Vulnerabilities > CVE-2005-3113 - Buffer Overflow vulnerability in NateOn Messenger Arbitrary File Download And

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

nateon

NVD

Published: 2005-09-30

Updated: 2016-10-18

Summary

The ActiveX control for NateOn Messenger (NateonDownloadManager.ocx) allows remote attackers to download and execute arbitrary programs by setting the arguments to the GotNate.Excute method.

Vulnerable Configurations

Part	Description	Count
Application	Nateon Nateon Nateon Messenger *	1

References

http://marc.info/?l=full-disclosure&m=112796492819343&w=2
http://secunia.com/advisories/16983
http://securitytracker.com/id?1014987
http://www.securityfocus.com/bid/14974