Axis Camera Control ActiveX Control AxisCamControl.OCX Remote Buffer Overflow Vulnerability

Bugtraq ID:	23816
Class:	Boundary Condition Error
CVE:	CVE-2007-2239
Remote:	Yes
Local:	No
Published:	May 04 2007 12:00AM
Updated:	Jul 03 2007 10:37PM
Credit:	Will Dormann of CERT/CC discovered this issue.
Vulnerable:	Axis Communications Camera Control 0
Not Vulnerable:	Axis Communications Camera Control 2.40 .0

Axis Camera Control ActiveX Control AxisCamControl.OCX Remote Buffer Overflow Vulnerability

Axis Camera Control is prone to a buffer-overflow vulnerability because it fails to sufficiently bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.

Successful attacks corrupt process memory, allowing arbitrary code to run in the context of the client application using the affected ActiveX control.

Axis Camera Control versions prior to 2.40.0.0 are vulnerable to this issue.

Axis Camera Control ActiveX Control AxisCamControl.OCX Remote Buffer Overflow Vulnerability

The following exploit is available:

• /data/vulnerabilities/exploits/23816.html

Axis Camera Control ActiveX Control AxisCamControl.OCX Remote Buffer Overflow Vulnerability

Solution:
The vendor has released version 2.40.0.0 of the affected ActiveX control to address this issue. Please see the references for more information.

Axis Camera Control ActiveX Control AxisCamControl.OCX Remote Buffer Overflow Vulnerability

References:

• Axis Support Page (Axis Communications)
  
• How to stop an ActiveX control from running in Internet Explorer (Microsoft)
  
• Network Camera and Video Servers (Axis Communications)
  
• Security Update Axis Camera Control ActiveX Update (Axis)
  
• Vulnerability Note VU#355809 (CERT)