Unrated severityNVD Advisory· Published Jun 6, 2007· Updated Jun 16, 2026
CVE-2007-2419
CVE-2007-2419
Description
Multiple buffer overflows in an ActiveX control (boisweb.dll) in Macrovision FLEXnet Connect 6.0 and Update Service 3.x to 5.x allow remote attackers to execute arbitrary code via the (1) the second parameter to the DownloadAndExecute method and (2) third parameter to the AddFileEx method, a different vulnerability than CVE-2007-0328.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:macrovision:flexnet_connect:6.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:macrovision:flexnet_connect:6.0:*:*:*:*:*:*:*
- (no CPE)range: 6.0
cpe:2.3:a:macrovision:update_service:3.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:macrovision:update_service:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:macrovision:update_service:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:macrovision:update_service:5.0:*:*:*:*:*:*:*
- (no CPE)range: 3.x - 5.x
Patches
Vulnerability mechanics
References
8- dvlabs.tippingpoint.com/advisory/TPTI-07-09nvdPatch
- support.installshield.com/kb/view.aspnvdPatch
- secunia.com/advisories/25509nvdVendor Advisory
- osvdb.org/36983nvd
- www.securityfocus.com/archive/1/470585/100/0/threadednvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/2070nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/34721nvd
News mentions
0No linked articles in our index yet.