3 matches found
CVE-2007-3675
Multiple format string vulnerabilities in the kavwebscan.CKAVWebScan ActiveX control kavwebscan.dll in Kaspersky Online Scanner before 5.0.98 allow remote attackers to execute arbitrary code via format string specifiers in "various string formatting functions," which trigger heap-based buffer...
CVE-2007-3675
CVE-2007-3675 concerns the kavwebscan.CKAVWebScan ActiveX control (kavwebscan.dll) used by Kaspersky Online Scanner. Public records state that this ActiveX contains a format string vulnerability in multiple string formatting functions, which can trigger a heap-based buffer overflow and allow remo...
iDefense Security Advisory 10.10.07: Kaspersky Web Scanner ActiveX Format String Vulnerability
Kaspersky Web Scanner ActiveX Format String Vulnerability iDefense Security Advisory 10.10.07 http://labs.idefense.com/intelligence/vulnerabilities/ Oct 10, 2007 I. BACKGROUND Kaspersky Lab Online Virus Scanner is a free online virus scanner service, enabling a user to scan their system for...