Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Stack-based buffer overflow in the Chinagames CGAgent ActiveX control 1.x in CGAgent.dll, as distributed in Chinagames iGame 2009, allows remote attackers to execute arbitrary code via a long argument to the CreateChinagames method, as exploited in the wild in April and May 2009. NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
中国游戏中心游戏大厅客户端远程栈溢出漏洞
Vulnerability Description
中国游戏中心是中国一款著名的游戏平台,含棋牌等多种网络游戏。 用户在中国游戏中心进行游戏时首先要下载并安装游戏大厅客户端(C:\Program Files\Chinagames\iGame\CGAgent.dll),该客户端没有正确地验证对CreateChinagames()函数所传送的lpszToken参数。如果用户受骗访问了恶意网页并传送了超长参数的话,就可以触发栈溢出,导致执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A