7 matches found
CVE-2007-2238
creationtimestamp| type| source ---|---|--- 2010-05-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16608 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/mswhalecheckforupdates.rb 2025-02-06...
Microsoft Whale Intelligent Application Gateway ActiveX Control Buffer Overflow
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Microsoft Whale...
DSquare Exploit Pack: D2SEC_MSIAG
Name| d2secmsiag ---|--- CVE| CVE-2007-2238 Exploit Pack| D2ExploitPack Description| Microsoft IAG 2007 ActiveX Stack Overflow Vulnerability Notes|...
CVE-2007-2238
CVE-2007-2238 describes multiple stack-based buffer overflows in the Whale Client Components ActiveX control (WhlMgr.dll) used by Microsoft Intelligent Application Gateway (IAG) before 3.7 SP2. The vulnerabilities allow remote code execution when an attacker supplies overly long arguments to the ...
CVE-2007-2238
Multiple stack-based buffer overflows in the Whale Client Components ActiveX control WhlMgr.dll, as used in Microsoft Intelligent Application Gateway IAG before 3.7 SP2, allow remote attackers to execute arbitrary code via long arguments to the 1 CheckForUpdates or 2 UpdateComponents methods...
KLA10392 ACE vulnerability in Microsoft Intelligent Application Gateway
An unspecified vulnerability was found in Microsoft IAG. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed arguments. Original advisories - Related products Microsoft-Intelligent-Application-Gateway CVE...
Microsoft Whale Intelligent Application Gateway ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in Microsoft Whale Intelligent Application Gateway Whale Client. When sending an overly long string to CheckForUpdates method of WhlMgr.dll 3.1.502.64 an attacker may be able to execute arbitrary code. This module requires Metasploit:...