CVE-2006-6490

SupportSoft SmartIssue/Scriptrunner - Buffer Overflow

Title source: llm

Description

Multiple buffer overflows in the SupportSoft (1) SmartIssue (tgctlsi.dll) and (2) ScriptRunner (tgctlsr.dll) ActiveX controls, as used by Symantec Automated Support Assistant and Norton AntiVirus, Internet Security, and System Works 2006, allows remote attackers to execute arbitrary code via a crafted HTML message.

References (17)

Core 17

Core References

Third Party Advisory third-party-advisory x_refsource_idefense

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=478

Third Party Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2007-02/0454.html

US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/441785

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2007/0704

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/461147/100/0/threaded

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1017688

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2007/0703

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1017691

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://osvdb.org/33482

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/24251

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/22564

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1017689

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1017690

Patch x_refsource_confirm

http://www.symantec.com/avcenter/security/Content/2007.02.22.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/32636

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://osvdb.org/33481

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/24246

Scores

EPSS 0.3347

EPSS Percentile 97.0%

Details

Status published

Products (6)

supportsoft/scriptrunner

supportsoft/smartissue

symantec/automated_support_assistant

symantec/norton_antivirus 2006

symantec/norton_internet_security 2006

symantec/norton_system_works 2006

Published Feb 22, 2007

Tracked Since Feb 18, 2026