5 matches found
Ourgame 'GLIEDown2.dll' ActiveX Control - Remote Code Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/29118/info Ourgame 'GLIEDown2.dll' ActiveX control is prone to a remote code-execution vulnerability because it fails to sufficiently verify user-supplied input. An attacker can exploit this issue to run arbitrary...
联众世界GLIEDown2.dll Active控件多个缓冲区溢出漏洞
BUGTRAQ ID: 29118,29446 联众世界是在中国非常流行的在线游戏网站。 联众世界的游戏大厅主程序GLWorld所安装的GLIEDown2.dll ActiveX控件(CLSID:F917534D-535B-416B-8E8F-0C04756C31A8)没有正确地处理对IEStart、IEStartNative方式以及ServerList、GameInfo和GruopName属性的输入参数。如果用户受骗访问了恶意网页并向这些方式传送了特制参数的话,就可能触发堆溢出或栈溢出,导致在用户系统上执行任意指令。 利用此漏洞进行挂马的0day攻击已经出现。 GlobalLink...
联众世界GLIEDown2.dll Active控件任意代码执行漏洞
联众世界是在中国非常流行的在线游戏网站。 联众世界的游戏大厅主程序GLWorld所安装的GLIEDown2.dll ActiveX控件(CLSID:F917534D-535B-416B-8E8F-0C04756C31A8)没有正确地处理某些用户输入参数,如果用户受骗访问了恶意网页并向这些方式传送了特制参数的话,可能导致在用户系统上执行任意指令。 利用此漏洞进行挂马的0day攻击已经出现。 GlobalLink 2.8.1.2 beta 临时解决方法: 为有漏洞的控件设置Kill-Bit: Windows Registry Editor Version 5.00...
Ourgame GLIEDown2.dll ActiveX Control - Remote Code Execution
Ourgame GLIEDown2.dll ActiveX Control - Remote Code Execution source: https://www.securityfocus.com/bid/29118/info Ourgame 'GLIEDown2.dll' ActiveX control is prone to a remote code-execution vulnerability because it fails to sufficiently verify user-supplied input. An attacker can exploit this...
Ourgame 'GLIEDown2.dll' ActiveX Control - Remote Code Execution
source: https://www.securityfocus.com/bid/29118/info Ourgame 'GLIEDown2.dll' ActiveX control is prone to a remote code-execution vulnerability because it fails to sufficiently verify user-supplied input. An attacker can exploit this issue to run arbitrary attacker-supplied code in the context of...