RSS   Vulnerabilities for 'Globallink'   RSS

2007-10-30
 
CVE-2007-5722

CWE-119
 

 
Stack-based buffer overflow in a certain ActiveX control in GLChat.ocx 2.5.1.32 in GlobalLink 2.7.0.8, as used in Ourgame GLWorld and possibly other products, allows remote attackers to execute arbitrary code via a long first argument to the ConnectAndEnterRoom method, possibly involving the GLCHAT.GLChatCtrl.1 control, as originally exploited in the wild in October 2007. NOTE: some of these details are obtained from third party information. NOTE: this was originally reported as a heap-based issue by some sources.

 
2007-09-11
 
CVE-2007-4802

 

 
Multiple heap-based buffer overflows in GlobalLink 2.7.0.8 allow remote attackers to execute arbitrary code via (1) a long eighth argument to the SetInfo method in a certain ActiveX control in glItemCom.dll or (2) a long second argument to the SetClientInfo method in a certain ActiveX control in glitemflat.dll.

 

 >>> Vendor: Ourgame.com 3 Products
Globallink
Glworld
Hangameplugincn18 activex control


Copyright 2024, cxsecurity.com

 

Back to Top