Описание
The InstallShield Update Service Agent ActiveX control in isusweb.dll allows remote attackers to cause a denial of service (memory corruption and browser crash) and possibly execute arbitrary code via a call to ExecuteRemote with a URL that results in a 404 error response.
Ссылки
- Patch
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- Permissions RequiredThird Party Advisory
- VDB Entry
- Patch
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- Permissions RequiredThird Party Advisory
- VDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:macrovision:flexnet_connect:6.0:*:*:*:*:*:*:*
EPSS
Процентиль: 92%
0.07615
Низкий
9.3 Critical
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
github
почти 4 года назад
The InstallShield Update Service Agent ActiveX control in isusweb.dll allows remote attackers to cause a denial of service (memory corruption and browser crash) and possibly execute arbitrary code via a call to ExecuteRemote with a URL that results in a 404 error response.
EPSS
Процентиль: 92%
0.07615
Низкий
9.3 Critical
CVSS2
Дефекты
NVD-CWE-noinfo