Trend Micro Security

Microsoft Internet Explorer Macrovision InstallShield Update Service ActiveX Control Code Execution

  危険度: : 緊急
  CVE識別番号: CVE-2007-5660

  概要

Unspecified vulnerability in the Update Service ActiveX control in isusweb.dll before 6.0.100.65101 in MacroVision FLEXnet Connect and InstallShield 2008 allows remote attackers to execute arbitrary code via an unspecified "unsafe method," possibly involving a buffer overflow.

  トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

  対応方法

  Trend Micro Deep Security DPI Rule Number: 1001170
  Trend Micro Deep Security DPI Rule Name: 1001170 - Microsoft Internet Explorer Macrovision InstallShield Update Service ActiveX Control Code Execution

  影響を受けるソフトウェア

  • Macrovision FLEXnet Connect
  • Macrovision InstallShield 2008
  • Macrovision Update Service 3.0
  • Macrovision Update Service 4.0
  • Macrovision Update Service 5.0
  • Macrovision Update Service 5.1.100_47363
  • Macrovision Update Service 6.0.100_60146
  • Microsoft Internet Explorer