Vulnerability Name:

CVE-2006-6490 (CCN-32636)

Assigned:2006-12-12
Published:2007-02-22
Updated:2018-10-17
Summary:Multiple buffer overflows in the SupportSoft (1) SmartIssue (tgctlsi.dll) and (2) ScriptRunner (tgctlsr.dll) ActiveX controls, as used by Symantec Automated Support Assistant and Norton AntiVirus, Internet Security, and System Works 2006, allows remote attackers to execute arbitrary code via a crafted HTML message.
CVSS v3 Severity:9.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
7.6 High (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C)
5.6 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): High
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Access
References:Source: BUGTRAQ
Type: UNKNOWN
20070223 Stack Overflow in Third-Party ActiveX Controls affects Multiple Vendor Products Including Some Symantec Consumer Products and Automated Support

Source: MITRE
Type: CNA
CVE-2006-6490

Source: IDEFENSE
Type: UNKNOWN
20070222 Multiple Vendor SupportSoft SmartIssue ActiveX Control Buffer Overflow Vulnerability

Source: OSVDB
Type: UNKNOWN
33481

Source: OSVDB
Type: UNKNOWN
33482

Source: CCN
Type: SA24246
Symantec Multiple Products SupportSoft ActiveX Controls Buffer Overflow

Source: SECUNIA
Type: UNKNOWN
24246

Source: CCN
Type: SA24251
SupportSoft ActiveX Controls Buffer Overflow Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
24251

Source: CCN
Type: SECTRACK ID: 1017688
Symantec Automated Support Assistant Stack Overflow in 3rd Party ActiveX Controls Lets Remote Users Execute Arbitrary Code

Source: CCN
Type: SECTRACK ID: 1017689
Symantec Norton System Works Stack Overflow in 3rd Party ActiveX Controls Lets Remote Users Execute Arbitrary Code

Source: CCN
Type: SECTRACK ID: 1017690
Symantec Norton AntiVirus Stack Overflow in 3rd Party ActiveX Controls Lets Remote Users Execute Arbitrary Code

Source: CCN
Type: SECTRACK ID: 1017691
Symantec Norton Internet Security Stack Overflow in 3rd Party ActiveX Controls Lets Remote Users Execute Arbitrary Code

Source: CCN
Type: US-CERT VU#441785
SupportSoft ActiveX controls contain multiple buffer overflows

Source: CERT-VN
Type: US Government Resource
VU#441785

Source: CCN
Type: OSVDB ID: 33481
SupportSoft SmartIssue (tgctlsi.dll) ActiveX Overflow

Source: CCN
Type: OSVDB ID: 33482
SupportSoft ScriptRunner (tgctlsr.dll) ActiveX Overflow

Source: BUGTRAQ
Type: UNKNOWN
20070223 Re: Stack Overflow in Third-Party ActiveX Controls affects Multiple Vendor Products Including Some Symantec Consumer Products and Automated Support

Source: BID
Type: UNKNOWN
22564

Source: CCN
Type: BID-22564
SupportSoft ActiveX Controls Remote Buffer Overflow Vulnerabilities

Source: SECTRACK
Type: UNKNOWN
1017688

Source: SECTRACK
Type: UNKNOWN
1017689

Source: SECTRACK
Type: UNKNOWN
1017690

Source: SECTRACK
Type: UNKNOWN
1017691

Source: CCN
Type: SupportSoft Web site
ActiveX Controls Security Update

Source: CCN
Type: SupportSoft Security Advisory Notification 2006-01
Vulnerability in ActiveX Controls Could allow a Remote Control Execution

Source: CCN
Type: SYM07-002
Stack Overflow in Third-Party ActiveX Controls affects Multiple Vendor Products Including Some Symantec Consumer Products and Automated Support Assistant

Source: CONFIRM
Type: Patch
http://www.symantec.com/avcenter/security/Content/2007.02.22.html

Source: VUPEN
Type: UNKNOWN
ADV-2007-0703

Source: VUPEN
Type: UNKNOWN
ADV-2007-0704

Source: XF
Type: UNKNOWN
supportsoft-activex-multiple-bo(32636)

Source: XF
Type: UNKNOWN
supportsoft-activex-multiple-bo(32636)

Source: CCN
Type: iDefense Labs PUBLIC ADVISORY: 02.22.07
Multiple Vendor SupportSoft SmartIssue ActiveX Control Buffer Overflow Vulnerability

Vulnerable Configuration:Configuration 1:
  • cpe:/a:supportsoft:scriptrunner:*:*:*:*:*:*:*:*
  • OR cpe:/a:supportsoft:smartissue:*:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:automated_support_assistant:*:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:norton_antivirus:2006:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:norton_internet_security:2006:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:norton_system_works:2006:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:symantec:norton_system_works:2006:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:norton_antivirus:2006:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:automated_support_assistant:*:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:norton_internet_security:2006:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    supportsoft scriptrunner *
    supportsoft smartissue *
    symantec automated support assistant *
    symantec norton antivirus 2006
    symantec norton internet security 2006
    symantec norton system works 2006
    symantec norton system works 2006
    symantec norton antivirus 2006
    symantec automated support assistant *
    symantec norton internet security 2006