7 matches found
Symantec Norton Internet Security 2004 ActiveX Control Buffer Overflow
No description provided by source. $Id: nis2004get.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Symantec Norton Internet Security 2004 ActiveX Control Buffer Overflow (CVE-2007-1689)
A remote code execution vulnerability has been reported in Symantec Norton Internet Security 2004. The vulnerability is due to data validation failure by the ISAlertDataCOM ActiveX control. A remote attacker may exploit this vulnerability by enticing an affected user to open a specially crafted...
Norton Personal Firewall ISAlertDataCOM ActiveX控件缓冲区溢出漏洞
Norton Personal Firewall是一款个人防火墙应用程序。 Norton Personal Firewall包含的ISAlertDataCOM ActiveX控件处理参数输入缺少正确边界检查,远程攻击者可以利用漏洞对应用程序进行缓冲区溢出攻击,可能以进程权限执行任意指令。 当ISLAlert.dll处理"Set"和"Get"方法时存在边界错误,提交超长参数可导致缓冲区溢出,构建恶意WEB页,诱使用户访问,可导致应用程序崩溃。 Symantec Norton Internet Security 2004 Symantec Norton Internet Security...
Symantec Norton Internet Security 2004 ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in the ISAlertDataCOM ActiveX Control ISLAert.dll provided by Symantec Norton Internet Security 2004. By sending an overly long string to the "Get" method, an attacker may be able to execute arbitrary code. This module requires Metasploit:...
Buffer overflow
Buffer overflow in the ISAlertDataCOM ActiveX control in ISLALERT.DLL for Norton Personal Firewall 2004 and Internet Security 2004 allows remote attackers to execute arbitrary code via long arguments to the 1 Get and 2 Set functions...
CVE-2007-1689
Buffer overflow in the ISAlertDataCOM ActiveX control in ISLALERT.DLL for Norton Personal Firewall 2004 and Internet Security 2004 allows remote attackers to execute arbitrary code via long arguments to the 1 Get and 2 Set functions...
CVE-2007-1689
The CVE-2007-1689 entry concerns a stack buffer overflow in the ISAlertDataCOM ActiveX control (ISLALERT.DLL) shipped with Norton Personal Firewall 2004 and Norton Internet Security 2004. The vulnerability is triggered by long arguments to the Get() and Set() methods of the ISAlertDataCOM control...