CVE-2007-5217

Stack-based buffer overflow in the ADM4 ActiveX control in adm4.dll in Altnet Download Manager 4.0.0.6, as used in (1) Kazaa 3.2.7 and (2) Grokster, allows remote attackers to execute arbitrary code via a long argument to the Install method. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Published: Oct 5, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-5217
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
altnet / altnet_download_manager	4.0.0.6	4.0.0.6.x
kazaa / kazaa_media_desktop	3.2.7	3.2.7.x
grokster / grokster	2.6	2.6.x

http://osvdb.org/37785
http://osvdb.org/38435
http://secunia.com/advisories/26970
http://secunia.com/advisories/26972
http://www.securityfocus.com/bid/25903
http://www.vupen.com/english/advisories/2007/3335
http://www.vupen.com/english/advisories/2007/3336
https://exchange.xforce.ibmcloud.com/vulnerabilities/36929

Vulnerability Database

CVE-2007-5217