CVE-2008-0956

Published: Jun 12, 2008Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Multiple stack-based buffer overflows in the BackWeb Lite Install Runner ActiveX control in the BackWeb Web Package ActiveX object in LiteInstActivator.dll in BackWeb before 8.1.1.87, as used in Logitech Desktop Manager (LDM) before 2.56, allow remote attackers to execute arbitrary code via unspecified vectors.

Affected (2)

Products: Backweb: Backweb · Logitech: Desktop Manager

1 product

1 product

Desktop Manager

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Backweb Backweb	Up to 8.1.1.86
Logitech Desktop Manager	Up to 2.55

Related CWEs

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (22)

http://backweb.com/news_events/press_releases/051608.php

Source: cret@cert.org

URL Repurposed

http://marc.info/?l=bugtraq&m=121380194923597&w=2

Source: cret@cert.org

http://secunia.com/advisories/30598

Source: cret@cert.org

Vendor Advisory

http://secunia.com/advisories/30625

Source: cret@cert.org

Vendor Advisory

http://www.kb.cert.org/vuls/id/216153

Source: cret@cert.org

PatchUS Government Resource

http://www.securityfocus.com/bid/29558

Source: cret@cert.org

http://www.us-cert.gov/cas/techalerts/TA08-162B.html

Source: cret@cert.org

US Government Resource

http://www.vupen.com/english/advisories/2008/1791

Source: cret@cert.org

http://www.vupen.com/english/advisories/2008/1792

Source: cret@cert.org

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-032

Source: cret@cert.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/42991

Source: cret@cert.org

http://backweb.com/news_events/press_releases/051608.php

Source: af854a3a-2127-422b-91ae-364da2661108

URL Repurposed

http://marc.info/?l=bugtraq&m=121380194923597&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/30598

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/30625

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.kb.cert.org/vuls/id/216153

Source: af854a3a-2127-422b-91ae-364da2661108

PatchUS Government Resource

http://www.securityfocus.com/bid/29558

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.us-cert.gov/cas/techalerts/TA08-162B.html

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.vupen.com/english/advisories/2008/1791

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2008/1792

Source: af854a3a-2127-422b-91ae-364da2661108

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-032

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/42991

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.