Unrated severityNVD Advisory· Published Feb 22, 2007· Updated Apr 23, 2026
CVE-2006-6490
CVE-2006-6490
Description
Multiple buffer overflows in the SupportSoft (1) SmartIssue (tgctlsi.dll) and (2) ScriptRunner (tgctlsr.dll) ActiveX controls, as used by Symantec Automated Support Assistant and Norton AntiVirus, Internet Security, and System Works 2006, allows remote attackers to execute arbitrary code via a crafted HTML message.
Affected products
6- cpe:2.3:a:supportsoft:scriptrunner:*:*:*:*:*:*:*:*
- cpe:2.3:a:supportsoft:smartissue:*:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:automated_support_assistant:*:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:norton_antivirus:2006:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:norton_internet_security:2006:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:norton_system_works:2006:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
17- www.symantec.com/avcenter/security/Content/2007.02.22.htmlnvdPatch
- www.kb.cert.org/vuls/id/441785nvdUS Government Resource
- archives.neohapsis.com/archives/bugtraq/2007-02/0454.htmlnvd
- labs.idefense.com/intelligence/vulnerabilities/display.phpnvd
- osvdb.org/33481nvd
- osvdb.org/33482nvd
- secunia.com/advisories/24246nvd
- secunia.com/advisories/24251nvd
- www.securityfocus.com/archive/1/461147/100/0/threadednvd
- www.securityfocus.com/bid/22564nvd
- www.securitytracker.com/idnvd
- www.securitytracker.com/idnvd
- www.securitytracker.com/idnvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/0703nvd
- www.vupen.com/english/advisories/2007/0704nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/32636nvd
News mentions
0No linked articles in our index yet.