Threat Monitor
BackDoor.W32.Rbot.buf
| Aliases: | |
|---|---|
| Pattern: | 201003141330 |
| Threat Type | Propagation Methods | Systems Affected | Risk Level |
|---|---|---|---|
|
|
|
Provideo Camimage Class ActiveX control is prone to a buffer-overflow vulnerability because it fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
The issue occurs when excessive data is passed to the 'URL' method of the Provideo Camimage Class ActiveX control with CLSID: AA0FB75C-C50E-47B6-B7E0-3B9C3FAA8AC4.
By persuading a victim to visit a specially-crafted Web page that passes an overly long string to the URL() in the Activex Control, a remote attacker could overflow a buffer and execute arbitrary code on the system with the privileges of the victim.
Affected: Provideo Camimage Class 1.0.1.5
The issue occurs when excessive data is passed to the 'URL' method of the Provideo Camimage Class ActiveX control with CLSID: AA0FB75C-C50E-47B6-B7E0-3B9C3FAA8AC4.
By persuading a victim to visit a specially-crafted Web page that passes an overly long string to the URL() in the Activex Control, a remote attacker could overflow a buffer and execute arbitrary code on the system with the privileges of the victim.
Affected: Provideo Camimage Class 1.0.1.5
