Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Creative Software AutoUpdate Engine ActiveX stack buffer overflow InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Creative Software AutoUpdate Engine ActiveX stack buffer overflow

Published: 2008-05-29
Last Updated: 2008-05-29 19:48:16 UTC
by Joel Esler (Version: 2)
0 comment(s)

Reader Mark wrote in with a bit of intel about a Stack Based Buffer Overflow for Creative Software's AutoUpdate Engine through ActiveX.

Thanks to Mark and eEye who provided the vulnerability information here.

CLSID (Killbit) for this one is: 0A5FD7C5-A45C-49FC-ADB5-9952547D5715

 

For more information than you can stand about Killbits and how to set them check out a Google search of our own site

--

Joel Esler

http://www.joelesler.net

Keywords: activex
0 comment(s)
Diary Archives