Unrated severityNVD Advisory· Published Jun 1, 2007· Updated Apr 23, 2026

CVE-2007-0328

Description

The DWUpdateService ActiveX control in the agent (agent.exe) in Macrovision FLEXnet Connect 6.0 and Update Service 3.x to 5.x allows remote attackers to execute arbitrary commands via (1) the Execute method, and obtain the exit status using (2) the GetExitCode method.

Affected products

Macrovision/Flexnet Connect
cpe:2.3:a:macrovision:flexnet_connect:6.0:*:*:*:*:*:*:*
Macrovision/Update Service3 versions
cpe:2.3:a:macrovision:update_service:3.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:macrovision:update_service:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:macrovision:update_service:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:macrovision:update_service:5.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.installshield.com/kb/view.aspnvdPatch
www.kb.cert.org/vuls/id/524681nvdPatchUS Government Resource
secunia.com/advisories/25501nvdVendor Advisory
secunia.com/advisories/32842nvdVendor Advisory
www.vupen.com/english/advisories/2007/2017nvdVendor Advisory
www.vupen.com/english/advisories/2008/3278nvdVendor Advisory
osvdb.org/36896nvd
www.blackberry.com/btsc/articles/749/KB16469_f.SAL_Public.htmlnvd
exchange.xforce.ibmcloud.com/vulnerabilities/34660nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000