Macrovision InstallShield Update Service Isusweb.DLL Multiple Remote Code Execution Vulnerabilities
BID:26280
Info
Macrovision InstallShield Update Service Isusweb.DLL Multiple Remote Code Execution Vulnerabilities
| Bugtraq ID: | 26280 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-5660 |
| Remote: | Yes |
| Local: | No |
| Published: | Oct 31 2007 12:00AM |
| Updated: | Dec 18 2007 08:06PM |
| Credit: | An anonymous researcher is credited with the discovery of these vulnerabilities. |
| Vulnerable: |
Macrovision Update Service 6.0.100 60146 Macrovision Update Service 5.1.100 47363 Macrovision Update Service 5.0 Macrovision Update Service 4.0 Macrovision Update Service 3.0 Macrovision InstallShield 2008 0 Macrovision FLEXnet Connect 0 |
| Not Vulnerable: | |
Discussion
Macrovision InstallShield Update Service Isusweb.DLL Multiple Remote Code Execution Vulnerabilities
InstallShield Update Service is prone to multiple remote code-execution vulnerabilities because it fails to adequately sanitize user-supplied data.
Successfully exploiting these issues will allow an attacker to execute arbitrary code with the permissions of the user running the application.
These issues affect InstallShield Update Service 5.01.100.47363 and 6.0.100.60146.
InstallShield Update Service is prone to multiple remote code-execution vulnerabilities because it fails to adequately sanitize user-supplied data.
Successfully exploiting these issues will allow an attacker to execute arbitrary code with the permissions of the user running the application.
These issues affect InstallShield Update Service 5.01.100.47363 and 6.0.100.60146.
Exploit / POC
Macrovision InstallShield Update Service Isusweb.DLL Multiple Remote Code Execution Vulnerabilities
An attacker can exploit these issues by enticing an unsuspecting victim to visit a malicious HTML page.
UPDATE: Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
An attacker can exploit these issues by enticing an unsuspecting victim to visit a malicious HTML page.
UPDATE: Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
Solution / Fix
Macrovision InstallShield Update Service Isusweb.DLL Multiple Remote Code Execution Vulnerabilities
Solution:
The vendor has released advisories and updates that address these issues. Please see the references for more information.
Solution:
The vendor has released advisories and updates that address these issues. Please see the references for more information.
References
Macrovision InstallShield Update Service Isusweb.DLL Multiple Remote Code Execution Vulnerabilities
References:
References:
- Important FLEXnet Connect Vulnerability Patch (Macrovision)
- Microsoft Support Document 240797 (Microsoft)
- iDefense Security Advisory 10.31.07: Macrovision InstallShield Update Service Ac (iDefense Labs
) - Q113020 INFO: FLEXnet Connect 6.0 Security Patch (Macrovision)
- Q113602 INFO: FLEXnet Connect 6.0 Security Patch (Macrovision)