Rediff Bol Downloader ActiveX Control Remote Code Execution Vulnerability

Bugtraq ID:	21831
Class:	Access Validation Error
CVE:	CVE-2006-6838
Remote:	Yes
Local:	No
Published:	Jan 01 2007 12:00AM
Updated:	Mar 07 2008 06:01PM
Credit:	Gregory R. Panakkal discovered this issue.
Vulnerable:	Rediff Bol Downloader ActiveX control 0
Not Vulnerable:

Rediff Bol Downloader ActiveX Control Remote Code Execution Vulnerability

Rediff Bol Downloader ActiveX control is prone to a remote code-execution vulnerability.

Exploiting this issue allows remote attackers to download and execute arbitrary code in the context of applications using the affected ActiveX control and possibly to compromise affected computers.

Rediff Bol Downloader ActiveX Control Remote Code Execution Vulnerability

Further investigation by the DeepSight Threat Analyst Team reveals that this issue is being actively exploited in the wild.

The following exploit is available:

• /data/vulnerabilities/exploits/21831.html

Rediff Bol Downloader ActiveX Control Remote Code Execution Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Rediff Bol Downloader ActiveX Control Remote Code Execution Vulnerability

References:

• rediff Homepage (rediff.com)
  
• Rediff Bol Downloader Allows Downloading and Spawning Arbitary Files ("gregory_panakkal" )