ID CVE-2006-6707
Summary Stack-based buffer overflow in the NeoTraceExplorer.NeoTraceLoader ActiveX control (NeoTraceExplorer.dll) in NeoTrace Express 3.25 and NeoTrace Pro (aka McAfee Visual Trace) 3.25 allows remote attackers to execute arbitrary code via a long argument string to the TraceTarget method. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
References
Vulnerable Configurations
  • cpe:2.3:a:mcafee:neotrace:3.25:-:express
    cpe:2.3:a:mcafee:neotrace:3.25:-:express
  • cpe:2.3:a:mcafee:neotrace:3.25:-:professional
    cpe:2.3:a:mcafee:neotrace:3.25:-:professional
  • McAfee Visual Trace 3.25
    cpe:2.3:a:mcafee:visual_trace:3.25
CVSS
Base: 7.5 (as of 27-12-2006 - 07:52)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
exploit-db via4
description McAfee Visual Trace ActiveX Control Buffer Overflow. CVE-2006-6707. Remote exploit for windows platform
id EDB-ID:16538
last seen 2016-02-02
modified 2010-09-20
published 2010-09-20
reporter metasploit
source https://www.exploit-db.com/download/16538/
title McAfee Visual Trace ActiveX Control Buffer Overflow
metasploit via4
description This module exploits a stack buffer overflow in the McAfee Visual Trace 3.25 ActiveX Control (NeoTraceExplorer.dll 1.0.0.1). By sending an overly long string to the "TraceTarget()" method, an attacker may be able to execute arbitrary code.
id MSF:EXPLOIT/WINDOWS/BROWSER/MCAFEEVISUALTRACE_TRACETARGET
last seen 2019-03-24
modified 2017-09-09
published 2007-07-08
reliability Normal
reporter Rapid7
source https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/mcafeevisualtrace_tracetarget.rb
title McAfee Visual Trace ActiveX Control Buffer Overflow
packetstorm via4
data source https://packetstormsecurity.com/files/download/83111/mcafeevisualtrace_tracetarget.rb.txt
id PACKETSTORM:83111
last seen 2016-12-05
published 2009-11-26
reporter MC
source https://packetstormsecurity.com/files/83111/McAfee-Visual-Trace-ActiveX-Control-Buffer-Overflow.html
title McAfee Visual Trace ActiveX Control Buffer Overflow
refmap via4
bid 21697
secunia 23463
Last major update 05-09-2008 - 17:15
Published 22-12-2006 - 20:28
Back to Top