Update on the FLEXnet Connect/InstallShield Update Service vulnerability

While doing some research on the security vulnerability in FLEXnet Connect and InstallShield Update Service I checked several versions of the agent.exe redistributable and it seems that it's using different CLSIDs in each release. The US-CERT advisory recommends setting the kill-bit for the control. But since its CLSID keeps changing this is quite difficult. The CLSID listed in the US-CERT article appears to apply only to the latest (= fixed) version. So (unless I'm mistaken, which is quite possible) the kill-bit workaround from US-CERT will NOT work and you are still vulnerable.

Published Sat, Jun 2 2007 14:46 by stefan

Filed under: Industry News, Security, Macrovision, FLEXnet Connect

Comments

# Doubts about yet another FLEXnet Connect/InstallShield Update Service vulnerability report

On June 4th TippingPoint, a provider of network-based intrusion prevention systems, reported a new buffer

Wednesday, June 06, 2007 5:15 AM by InstallSite Blog

# Macrovision preparing end-user patch for FLEXnet Connect/Update Service security issues

Updated information about the recent security vulnerability reports in Macrovision's FLEXnet Connect

Thursday, June 21, 2007 2:45 PM by InstallSite Blog

# Macrovision preparing end-user patch for FLEXnet Connect/Update Service security issues

Updated information about the recent security vulnerability reports in Macrovision's FLEXnet Connect

Sunday, January 20, 2008 6:04 AM by InstallSite Blog

# Doubts about yet another FLEXnet Connect/InstallShield Update Service vulnerability report

On June 4th TippingPoint, a provider of network-based intrusion prevention systems, reported a new buffer

Sunday, January 20, 2008 6:04 AM by InstallSite Blog

InstallSite Blog

Google Ads

Syndication

Email Notifications

Tags

Search

This Blog

Related Blogs

InstallSite

Related Websites

Archives

Community

Legal (German)