QwikSec

Security Database

CVE

CWE

Training

CVE-2006-6490

Published: Feb 22, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple buffer overflows in the SupportSoft (1) SmartIssue (tgctlsi.dll) and (2) ScriptRunner (tgctlsr.dll) ActiveX controls, as used by Symantec Automated Support Assistant and Norton AntiVirus, Internet Security, and System Works 2006, allows remote attackers to execute arbitrary code via a crafted HTML message.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20070223 Stack Overflow in Third-Party ActiveX Controls affects Multiple Vendor Products Including Some Symantec Consumer Products and Automated Support

mailing-list

x_refsource_BUGTRAQ

third-party-advisory

x_refsource_CERT-VN

vdb-entry

x_refsource_VUPEN

20070223 Re: Stack Overflow in Third-Party ActiveX Controls affects Multiple Vendor Products Including Some Symantec Consumer Products and Automated Support

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_SECTRACK

vdb-entry

x_refsource_VUPEN

vdb-entry

x_refsource_SECTRACK

vdb-entry

x_refsource_OSVDB

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_SECTRACK

vdb-entry

x_refsource_SECTRACK

http://www.symantec.com/avcenter/security/Content/2007.02.22.html

x_refsource_CONFIRM

supportsoft-activex-multiple-bo(32636)

vdb-entry

x_refsource_XF

vdb-entry

x_refsource_OSVDB

third-party-advisory

x_refsource_SECUNIA

20070222 Multiple Vendor SupportSoft SmartIssue ActiveX Control Buffer Overflow Vulnerability

third-party-advisory

x_refsource_IDEFENSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.