CVE-2008-3430

Buffer overflow in the CoVideoWindow.ocx ActiveX control 5.0.907.1 in Eyeball MessengerSDK, as used in products such as SiOL Komunikator 1.3, allows remote attackers to execute arbitrary code via a large argument supplied to the BGColor method.  NOTE: this might only be a vulnerability in certain insecure configurations of Internet Explorer.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
VendorProductVersion
eyeball_networkseyeball_messenger_sdk
5.0.907.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://packetstormsecurity.org/0807-exploits/siol-overflow.txt
http://www.securityfocus.com/bid/30424
https://exchange.xforce.ibmcloud.com/vulnerabilities/44111
http://packetstormsecurity.org/0807-exploits/siol-overflow.txt
http://www.securityfocus.com/bid/30424
https://exchange.xforce.ibmcloud.com/vulnerabilities/44111