Buffer overflow in the IEToolbar.IEContextMenu.1 ActiveX control in LinkedInIEToolbar.dll in the LinkedIn Toolbar 3.0.2.1098 allows remote attackers to execute arbitrary code via a long second argument (varBrowser argument) to the search method. NOTE: some of these details are obtained from third party information.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Toolbar | 3.0.2.1098 (including) | 3.0.2.1098 (including) |
References
- http://osvdb.org/37696
- http://secunia.com/advisories/26181
- http://www.securityfocus.com/bid/25032
- http://www.vdalabs.com/tools/linkedin.html
- http://www.vupen.com/english/advisories/2007/2620
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35578
- https://www.exploit-db.com/exploits/4217
- http://osvdb.org/37696
- http://secunia.com/advisories/26181
- http://www.securityfocus.com/bid/25032
- http://www.vdalabs.com/tools/linkedin.html
- http://www.vupen.com/english/advisories/2007/2620
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35578
- https://www.exploit-db.com/exploits/4217