CVE-2008-0956

BackWeb < 8.1.1.86 and Logitech Desktop Manager < 2.55 - Remote Code Execution via Stack-Based Buffer Overflow

Title source: llm
STIX 2.1

Description

Multiple stack-based buffer overflows in the BackWeb Lite Install Runner ActiveX control in the BackWeb Web Package ActiveX object in LiteInstActivator.dll in BackWeb before 8.1.1.87, as used in Logitech Desktop Manager (LDM) before 2.56, allow remote attackers to execute arbitrary code via unspecified vectors.

References (11)

Core 11
Core References
Patch, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/216153
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA08-162B.html
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/30625
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1791
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/29558
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1792
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=121380194923597&w=2
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/30598
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/42991

Scores

EPSS 0.0839
EPSS Percentile 94.3%

Details

CWE
CWE-119
Status published
Products (2)
backweb/backweb < 8.1.1.86
logitech/desktop_manager < 2.55
Published Jun 12, 2008
Tracked Since Feb 18, 2026