CVE-2008-0634

Published: Feb 6, 2008Modified: Apr 23, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Buffer overflow in the NamoInstaller.NamoInstall.1 ActiveX control in NamoInstaller.dll 3.0.0.1, as used in Sejoong Namo ActiveSquare6, allows remote attackers to execute arbitrary code via a long argument to the Install method, a different vulnerability than CVE-2008-0551.

Affected (2)

Products: Sejoong Namo: Activesquare, Namoinstall.1 Activex Control

2 products

Namoinstall.1 Activex Control

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Sejoong Namo Activesquare	Version 6
Sejoong Namo Namoinstall.1 Activex Control	Version 3.0.0.1

Related CWEs

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (6)

http://secunia.com/advisories/28649

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/40199

Source: cve@mitre.org

https://www.exploit-db.com/exploits/5045

Source: cve@mitre.org

http://secunia.com/advisories/28649

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/40199

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.exploit-db.com/exploits/5045

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.