Unrated severityNVD Advisory· Published Feb 7, 2008· Updated Apr 23, 2026

CVE-2008-0647

Description

Multiple stack-based buffer overflows in the HanGamePluginCn18.HanGamePluginCn18.1 ActiveX control in HanGamePluginCn18.dll in Ourgame GLWorld 2.6.1.29 (aka Lianzong Game Platform) allow remote attackers to execute arbitrary code via long arguments to the (1) hgs_startGame and (2) hgs_startNotify methods, as exploited in the wild as of February 2008. NOTE: some of these details are obtained from third party information.

Affected products

Ourgame.com/Glworld
cpe:2.3:a:ourgame.com:glworld:2.6.1.29:*:*:*:*:*:*:*
Ourgame.com/Hangameplugincn18 Activex Control
cpe:2.3:a:ourgame.com:hangameplugincn18_activex_control:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/28809nvdVendor Advisory
www.securityfocus.com/bid/27626nvd
www.symantec.com/enterprise/security_response/weblog/2008/02/zeroday_exploit_for_lianzong_g.htmlnvd
www.vupen.com/english/advisories/2008/0427nvd
www.exploit-db.com/exploits/5153nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.006
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000