Summary
SIDVault is prone to multiple remote buffer-overflow vulnerabilities because the application fails to properly bounds- check user-supplied input before copying it to an insufficiently sized memory buffer.
An attacker can exploit these issues to execute arbitrary code with superuser privileges. Successfully exploiting these issues will result in the complete compromise of affected computers. Failed exploit attempts will result in a denial-of-service condition.
These issues affect versions prior to SIDVault 2.0f.
Solution
The vendor released SIDVault 2.0f to address this issue. Please see the references for more information.
References
Updated on 2017-03-28
Severity
Classification
-
CVE CVE-2007-4566 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Audition '.ses' Multiple Buffer Overflow Vulnerabilities (Windows)
- BreakPoint Software, Hex Workshop Buffer Overflow vulnerability
- Adobe Flash Player Buffer Overflow Vulnerability (Mac OS X)
- Citrix Provisioning Services SoapServer Buffer Overflow Vulnerability
- Adobe Flash Professional JPG Object Processing BOF Vulnerability (Windows)