AOL SB.SuperBuddy.1 ActiveX Control Remote Code Execution Vulnerability
BID:23224
Info
AOL SB.SuperBuddy.1 ActiveX Control Remote Code Execution Vulnerability
| Bugtraq ID: | 23224 |
| Class: | Design Error |
| CVE: |
CVE-2006-5820 |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 08 2006 12:00AM |
| Updated: | Nov 15 2007 12:39AM |
| Credit: | Cody Pierce is credited with the discovery of this vulnerability. |
| Vulnerable: |
AOL Client Software 9.0 Security |
| Not Vulnerable: | |
Discussion
AOL SB.SuperBuddy.1 ActiveX Control Remote Code Execution Vulnerability
AOL SB.SuperBuddy.1 ActiveX control is prone to a remote code-execution vulnerability.
An attacker can invoke the object from a malicious web page to trigger the condition. If the vulnerability is successfully exploited, the attacker may be able to exploit the condition to corrupt process memory, resulting in arbitrary code execution within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
AOL SB.SuperBuddy.1 ActiveX control is prone to a remote code-execution vulnerability.
An attacker can invoke the object from a malicious web page to trigger the condition. If the vulnerability is successfully exploited, the attacker may be able to exploit the condition to corrupt process memory, resulting in arbitrary code execution within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
Exploit / POC
AOL SB.SuperBuddy.1 ActiveX Control Remote Code Execution Vulnerability
The Symantec DeepSight Team has discovered that this isssue is being exploited in the wild by the updated version of the Trojan.Peacomm.
The following exploit is available for the Metasploit framework:
The Symantec DeepSight Team has discovered that this isssue is being exploited in the wild by the updated version of the Trojan.Peacomm.
The following exploit is available for the Metasploit framework:
Solution / Fix
AOL SB.SuperBuddy.1 ActiveX Control Remote Code Execution Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
AOL SB.SuperBuddy.1 ActiveX Control Remote Code Execution Vulnerability
References:
References:
- AOL Homepage (AOL)
- Trojan.Peacomm (Symantec)
- TSRT-07-03: America Online SuperBuddy ActiveX Control Code Execution ([email protected])
- TSRT-07-03: America Online SuperBuddy ActiveX Control Code Execution Vulnerabili (TippingPoint)
- Vulnerability Note VU#478225 AOL SuperBuddy ActiveX fails to properly validate m (US-CERT)