Stack-based buffer overflow in the Clever Database Comparer 2.2 ActiveX control (comparerax.ocx) allows remote attackers to execute arbitrary code via a long argument to the ConnectToDatabase function.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Clever_database_comparer | Clever_components | 2.2 (including) | 2.2 (including) |
References
- http://moaxb.blogspot.com/2007/05/moaxb-14-clever-database-comparer.html
- http://osvdb.org/36019
- http://secunia.com/advisories/25227
- http://www.securityfocus.com/bid/23969
- http://www.shinnai.altervista.org/moaxb/20070514/clever.html
- http://www.vupen.com/english/advisories/2007/1792
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34261
- http://moaxb.blogspot.com/2007/05/moaxb-14-clever-database-comparer.html
- http://osvdb.org/36019
- http://secunia.com/advisories/25227
- http://www.securityfocus.com/bid/23969
- http://www.shinnai.altervista.org/moaxb/20070514/clever.html
- http://www.vupen.com/english/advisories/2007/1792
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34261