CVE-2007-2238 in Whale Communication IAGinfo

Summary

Multiple stack-based buffer overflows in the Whale Client Components ActiveX control (WhlMgr.dll), as used in Microsoft Intelligent Application Gateway (IAG) before 3.7 SP2, allow remote attackers to execute arbitrary code via long arguments to the (1) CheckForUpdates or (2) UpdateComponents methods.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

04/25/2007

Disclosure

04/16/2009

Moderation

VulDB entry created

Entries

VDB-3954 (1)

CPE

ready

CWE

CWE-119 (Confirmed)

CVSS

7.3

EPSS

0.76519

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-2238
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-2238
CVE Details	https://www.cvedetails.com/cve/CVE-2007-2238/

◂ Previous Overview Next ▸