Buffer overflow in a certain ActiveX control in Macrovision InstallShield Update Service Web Agent 18.104.22.168363 allows remote attackers to execute arbitrary code via a long string in the ProductCode argument (second argument) to the DownloadAndExecute method, a different vulnerability than CVE-2007-0321, CVE-2007-2419, and CVE-2007-5660.
InstallShield Update Service is prone to a remote buffer-overflow vulnerability because it fails to adequately sanitize user-supplied data.Successfully exploiting this issue will allow an attacker to execute arbitrary code with the permissions of the user running the application.This issue affects InstallShield Update Service 22.214.171.124363; other versions may also be affected.NOTE: Reportedly, this issue differs from those documented in BID 26280 (Macrovision InstallShield Update Service Isusweb.DLL Multiple Remote Code Execution Vulnerabilities).
The vendor has released advisories and updates that address this issue. Please see the references for more information.
An attacker can exploit this issue by enticing an unsuspecting victim to visit a malicious HTML page.UPDATE (August 11, 2008): Symantec has detected active exploit attempts in the wild.An exploit is available. /data/vulnerabilities/exploits/27013.html