InstallFromTheWeb Multiple Unspecified Buffer Overflow Vulnerabilities

InstallFromTheWeb Multiple Unspecified Buffer Overflow Vulnerabilities

Macrovision / InstallShield InstallFromTheWeb is prone to multiple buffer-overflow vulnerabilities because the software fails to properly check boundaries on user-supplied data before copying it to an insufficiently sized buffer.

A remote attacker may exploit these vulnerabilities by presenting a malicious file to a victim user and enticing them to open it with the vulnerable application.

Successful attacks can cause denial-of-service conditions in a browser or other applications that use the vulnerable application. Arbitrary code execution may also be possible, but this has not been confirmed.