CVE-2008-1307

Kingsoft Antivirus Online Update Module - Memory Corruption

Title source: rule

Description

Heap-based buffer overflow in the KUpdateObj2 Class ActiveX control in UpdateOcx2.dll in Beijing KingSoft Antivirus Online Update Module 2007.12.29.29 allows remote attackers to execute arbitrary code via a long argument to the SetUninstallName method.

Exploits (1)

exploitdb WORKING POC VERIFIED
by void · htmldoswindows
https://www.exploit-db.com/exploits/5225

References (5)

Scores

EPSS 0.0751
EPSS Percentile 91.8%

Details

CWE
CWE-119
Status published
Products (1)
kingsoft/antivirus_online_update_module 2007.12.29.29
Published Mar 12, 2008
Tracked Since Feb 18, 2026