Move Media Player Buffer Overflow in ActiveX Control Lets Remote Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1019270
|
|
SecurityTracker URL: http://securitytracker.com/id?1019270
|
|
CVE Reference: CVE-2008-0477
(Links to External Site)
|
Updated: Feb 17 2008
|
Original Entry Date: Jan 25 2008
|
Impact: Execution of arbitrary code via network, User access via network
|
Exploit Included: Yes
|
Version(s): QMPUpgrade.dll version 1.0.0.1
|
Description: A vulnerability was reported in Move Media Player. A remote user can cause arbitrary code to be executed on the target user's system.
A remote user can create specially crafted HTML that, when loaded by the target user, will invoke an ActiveX control and trigger
a buffer overflow in 'QMPUpgrade.dll' to execute arbitrary code on the target system. The code will run with the privileges of
the target user.
The CLSID of the vulnerable control is: 6054D082-355D-4B47-B77C-36A778899F48
Elazar Broad reported this vulnerability.
The
original advisory is available at:
http://milw0rm.com/exploits/4979
|
Impact: A remote user can create HTML that, when loaded by the target user, will execute arbitrary code on the target user's system.
|
Solution: No solution was available at the time of this entry.
|
Vendor URL: www.movenetworks.com/ (Links to External Site)
|
Cause: Boundary error
|
Underlying OS: Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Fri, 25 Jan 2008 09:32:27 -0500
Subject: Move Media Player
|
http://milw0rm.com/exploits/4979
|
|
