Microsoft Whale Intelligent Application Gateway ActiveX Control Buffer Overflow

No description provided by source. $Id: mswhalecheckforupdates.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

Microsoft Whale Intelligent Application Gateway - ActiveX Control Buffer Overflow (Metasploit)

$Id: mswhalecheckforupdates.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Stack overflow

Multiple stack-based buffer overflows in the Whale Client Components ActiveX control WhlMgr.dll, as used in Microsoft Intelligent Application Gateway IAG before 3.7 SP2, allow remote attackers to execute arbitrary code via long arguments to the 1 CheckForUpdates or 2 UpdateComponents methods...

Microsoft IAG 2007 ActiveX控件栈溢出漏洞

BUGTRAQ ID: 34532 CVECAN ID: CVE-2007-2238 Microsoft的Intelligent Application Gateway（IAG）2007是全面的远程访问网关，提供基于SSL的应用程序访问、保护和端点安全管理。 IAG所使用的Whale客户端组件（由WhlMgr.dll文件提供）没有正确地验证对CheckForUpdates和 UpdateComponents方式所传送的输入参数。如果用户受骗访问了恶意网页并向上述方式提供了超长输入参数的话，就可以触发栈溢出，导致执行任意代码。 Microsoft Intelligent Applicati...