CVE-2003-0470 Information

Description

Buffer overflow in the \RuFSI Utility Class\ ActiveX control (aka \RuFSI Registry Information Class) as used for the Symantec Security Check service allows remote attackers to execute arbitrary code via a long argument to CompareVersionStrings.

Reference

http://lists.grok.org.uk/pipermail/full-disclosure/2003-June/006014.html http://marc.info/?l=bugtraq&m=105647537823877&w=2 http://secunia.com/advisories/9091 http://securitytracker.com/id?1007029 http://www.kb.cert.org/vuls/id/527228 http://www.securityfocus.com/bid/8008 https://exchange.xforce.ibmcloud.com/vulnerabilities/12423