Macrovision Flexnet Connect vulnerabilities
3 known vulnerabilities affecting macrovision/flexnet_connect.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3
Vulnerabilities
Page 1 of 1
CVE-2007-0328P3CRITICALCVSS 9.3v6.02007-06-01
CVE-2007-0328 [CRITICAL] CVE-2007-0328: The DWUpdateService ActiveX control in the agent (agent.exe) in Macrovision FLEXnet Connect 6.0 and
The DWUpdateService ActiveX control in the agent (agent.exe) in Macrovision FLEXnet Connect 6.0 and Update Service 3.x to 5.x allows remote attackers to execute arbitrary commands via (1) the Execute method, and obtain the exit status using (2) the GetExitCode method.
nvd
CVE-2007-2419P3CRITICALCVSS 10.0v6.02007-06-06
CVE-2007-2419 [CRITICAL] CVE-2007-2419: Multiple buffer overflows in an ActiveX control (boisweb.dll) in Macrovision FLEXnet Connect 6.0 and
Multiple buffer overflows in an ActiveX control (boisweb.dll) in Macrovision FLEXnet Connect 6.0 and Update Service 3.x to 5.x allow remote attackers to execute arbitrary code via the (1) the second parameter to the DownloadAndExecute method and (2) third parameter to the AddFileEx method, a different vulnerability than CVE-2007-0328.
nvd
CVE-2008-2470P3CRITICALCVSS 9.3v6.02008-09-18
CVE-2008-2470 [CRITICAL] CVE-2008-2470: The InstallShield Update Service Agent ActiveX control in isusweb.dll allows remote attackers to cau
The InstallShield Update Service Agent ActiveX control in isusweb.dll allows remote attackers to cause a denial of service (memory corruption and browser crash) and possibly execute arbitrary code via a call to ExecuteRemote with a URL that results in a 404 error response.
nvd