CVE-2008-0647

EXPLOITED IN THE WILD

Ourgame GLWorld 2.6.1.29 - Remote Code Execution via HanGamePluginCn18 ActiveX Control

Title source: llm

Exploitation Summary

CVE-2008-0647 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io). EIP tracks 1 public exploit from researchers including luoluo.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in HanGamePluginCn18 ActiveX control (CVE-2008-0647) to achieve remote code execution. It constructs a malicious buffer with shellcode (spawning calc.exe) and triggers the overflow via the hgs_startNotify method.

Description

Multiple stack-based buffer overflows in the HanGamePluginCn18.HanGamePluginCn18.1 ActiveX control in HanGamePluginCn18.dll in Ourgame GLWorld 2.6.1.29 (aka Lianzong Game Platform) allow remote attackers to execute arbitrary code via long arguments to the (1) hgs_startGame and (2) hgs_startNotify methods, as exploited in the wild as of February 2008. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by luoluo · remotewindows

https://www.exploit-db.com/exploits/5153

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in HanGamePluginCn18 ActiveX control (CVE-2008-0647) to achieve remote code execution. It constructs a malicious buffer with shellcode (spawning calc.exe) and triggers the overflow via the hgs_startNotify method.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: HanGamePluginCn18 ActiveX Control (version unspecified)

No auth needed

Prerequisites: Victim must have the vulnerable ActiveX control installed · Attacker must deliver the exploit via a web page or malicious link

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/27626

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2008/0427

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/5153

Third Party Advisory x_refsource_misc

http://www.symantec.com/enterprise/security_response/weblog/2008/02/zeroday_exploit_for_lianzong_g.html

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/28809

Scores

EPSS 0.0714

EPSS Percentile 91.8%

Details

VulnCheck KEV 2008-02-07

InTheWild.io 2017-09-29

CWE

CWE-119

Status published

Products (2)

ourgame.com/glworld 2.6.1.29

ourgame.com/hangameplugincn18_activex_control

Published Feb 07, 2008

Tracked Since Feb 18, 2026