CVE-2007-2238

Multiple stack-based buffer overflows in the Whale Client Components ActiveX control (WhlMgr.dll), as used in Microsoft Intelligent Application Gateway (IAG) before 3.7 SP2, allow remote attackers to execute arbitrary code via long arguments to the (1) CheckForUpdates or (2) UpdateComponents methods.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:intelligent_application_gateway_2007:*:sp1:*:*:*:*:*:*
cpe:2.3:a:microsoft:intelligent_application_gateway_2007:*:sp1:*:*:*:*:*:*

History

21 Nov 2024, 00:30

Type Values Removed Values Added
References () http://secunia.com/advisories/34725 - () http://secunia.com/advisories/34725 -
References () http://www.kb.cert.org/vuls/id/789121 - US Government Resource () http://www.kb.cert.org/vuls/id/789121 - US Government Resource
References () http://www.securityfocus.com/bid/34532 - Patch () http://www.securityfocus.com/bid/34532 - Patch
References () http://www.vupen.com/english/advisories/2009/1061 - () http://www.vupen.com/english/advisories/2009/1061 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/49888 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/49888 -

Information

Published : 2009-04-16 15:12

Updated : 2024-11-21 00:30


NVD link : CVE-2007-2238

Mitre link : CVE-2007-2238

CVE.ORG link : CVE-2007-2238


JSON object : View

Products Affected

microsoft

  • intelligent_application_gateway_2007
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer