Cryptomathic ActiveX Control Remote Buffer Overflow Vulnerability
BID:17852
Info
Cryptomathic ActiveX Control Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 17852 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2006-1172 |
| Remote: | Yes |
| Local: | No |
| Published: | May 05 2006 12:00AM |
| Updated: | May 05 2006 07:35PM |
| Credit: | Dennis Rand is credited with the discovery of this issue. |
| Vulnerable: |
TDC Cryptomathic Digital Signature 0 |
| Not Vulnerable: | |
Discussion
Cryptomathic ActiveX Control Remote Buffer Overflow Vulnerability
Cryptomathic ActiveX control is prone to a buffer-overflow vulnerability. The software fails to perform sufficient bounds-checking of user-supplied input before copying it to an insufficiently sized memory buffer.
Invoking the object from a malicious website or HTML email may trigger the condition. If the vulnerability were successfully exploited, this would corrupt process memory, resulting in arbitrary code execution. Arbitrary code would be executed in the context of the client application.
Cryptomathic ActiveX control is prone to a buffer-overflow vulnerability. The software fails to perform sufficient bounds-checking of user-supplied input before copying it to an insufficiently sized memory buffer.
Invoking the object from a malicious website or HTML email may trigger the condition. If the vulnerability were successfully exploited, this would corrupt process memory, resulting in arbitrary code execution. Arbitrary code would be executed in the context of the client application.
Exploit / POC
Cryptomathic ActiveX Control Remote Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
The following proof of concept is available:
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
The following proof of concept is available:
Solution / Fix
Cryptomathic ActiveX Control Remote Buffer Overflow Vulnerability
Solution:
The vendor has released an advisory, along with fixes to address this issue.
Users of affected packages should visit the referenced 'opdatering.tdc.dk' URI to determine if they are vulnerable and to download a fixed version of the application.
Solution:
The vendor has released an advisory, along with fixes to address this issue.
Users of affected packages should visit the referenced 'opdatering.tdc.dk' URI to determine if they are vulnerable and to download a fixed version of the application.
References
Cryptomathic ActiveX Control Remote Buffer Overflow Vulnerability
References:
References: