Update Protection against iseemedia LPViewer ActiveX Control Buffer Overflow Vulnerabilities
| Check Point Reference: | CPAI-2008-237 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | Secunia Advsiory: SA32140 | |
| Industry Reference(s): | CVE-2008-4384 US-CERT VU#848873 |
|
| Protection Provided by: |
VPN-1
|
|
| Who is Vulnerable? iseemedia LPViewer MGI Software ZOOM Viewer Roxio Project Roxio | ||
| Vulnerability Description iseemedia is a software development company focused on the commercialization of advanced, rich content adaptation and distribution solutions for Web applications. iseemedia's platforms are used by websites worldwide. The iseemedia LPViewer ActiveX control contains multiple buffer overflow vulnerabilities. The vulnerabilities are caused due to boundary errors within several methods provided by the iseemedia LPViewer ActiveX control. By convincing a user to visit a malicious web page, an attacker may be able to execute arbitrary code with the privileges of the user. |
||
|
Vulnerability Details These vulnerabilities are due to insufficient boundary checking when a crafted, overly long parameter is passed to the affected ActiveX control. To trigger these issues, an attacker may create a malicious web page that initiates the vulnerable COM Object. Successful exploitation of these vulnerabilities allows execution of arbitrary code on the vulnerable system. |
Protection Overview
By enabling this protection, SmartDefense will detect and block the vulnerable ActiveX Control. Depending on the traffic mix, activating this protection may result in performance degradation.
In order for the protection to be activated, update your VPN-1/IPS-1/InterSpect product to the latest SmartDefense update. For information on how to update SmartDefense, go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.