CVE-2008-0956
BackWeb < 8.1.1.86 and Logitech Desktop Manager < 2.55 - Remote Code Execution via Stack-Based Buffer Overflow
Title source: llmDescription
Multiple stack-based buffer overflows in the BackWeb Lite Install Runner ActiveX control in the BackWeb Web Package ActiveX object in LiteInstActivator.dll in BackWeb before 8.1.1.87, as used in Logitech Desktop Manager (LDM) before 2.56, allow remote attackers to execute arbitrary code via unspecified vectors.
References (11)
Core 11
Core References
Patch, US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/216153
US Government Resource third-party-advisory
x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA08-162B.html
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/30625
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1791
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/29558
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1792
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=121380194923597&w=2
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/30598
Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-032
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/42991
URL Repurposed x_refsource_confirm
http://backweb.com/news_events/press_releases/051608.php
Scores
EPSS
0.0839
EPSS Percentile
94.3%
Details
CWE
CWE-119
Status
published
Products (2)
backweb/backweb
< 8.1.1.86
logitech/desktop_manager
< 2.55
Published
Jun 12, 2008
Tracked Since
Feb 18, 2026