MarkAny MaPrintModule ActiveX Denial of Service Vulnerability
BID:23420
Info
MarkAny MaPrintModule ActiveX Denial of Service Vulnerability
| Bugtraq ID: | 23420 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 11 2007 12:00AM |
| Updated: | Apr 13 2007 06:11PM |
| Credit: | Sukhee Jung <[email protected]> is credited with the discovery of this vulnerability. |
| Vulnerable: |
MarkAny MaPrintModule_WORK 1.0 .2 MarkAny MaPrintModule_LGCard 2.1.1 .2 MarkAny MaPrintModule_KBCard 2.1.1 .0 MarkAny MaPrintModule_BCCard 2.1.1 .1 |
| Not Vulnerable: | |
Discussion
MarkAny MaPrintModule ActiveX Denial of Service Vulnerability
MarkAny MaPrintModule ActiveX control is prone to a denial-of-service vulnerability.
Exploiting this issue allows remote attackers to crash applications that employ the vulnerable controls (typically Microsoft Internet Explorer).
MarkAny MaPrintModule ActiveX Control 1.0.0.2 and 2.1.1.0 through 2.1.1.2 are vulnerable to this issue; other versions may also be vulnerable.
NOTE: Newly available technical information indicates that this is not a buffer-overflow issue and may be exploited only to cause denial-of-service conditions. This BID has been updated to reflect this new information.
MarkAny MaPrintModule ActiveX control is prone to a denial-of-service vulnerability.
Exploiting this issue allows remote attackers to crash applications that employ the vulnerable controls (typically Microsoft Internet Explorer).
MarkAny MaPrintModule ActiveX Control 1.0.0.2 and 2.1.1.0 through 2.1.1.2 are vulnerable to this issue; other versions may also be vulnerable.
NOTE: Newly available technical information indicates that this is not a buffer-overflow issue and may be exploited only to cause denial-of-service conditions. This BID has been updated to reflect this new information.
Exploit / POC
MarkAny MaPrintModule ActiveX Denial of Service Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution / Fix
MarkAny MaPrintModule ActiveX Denial of Service Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
MarkAny MaPrintModule ActiveX Denial of Service Vulnerability
References:
References: