Sienzo Digital Music Mentor ActiveX Control SetEvalExpiryDate Method Buffer Overflow Vulnerability
BID:23849
Info
Sienzo Digital Music Mentor ActiveX Control SetEvalExpiryDate Method Buffer Overflow Vulnerability
| Bugtraq ID: | 23849 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | May 07 2007 12:00AM |
| Updated: | May 09 2007 08:29PM |
| Credit: | Parveen Vashishtha is credited with the discovery of these issues. |
| Vulnerable: |
Sienzo Digital Music Mentor 2.6 .4 |
| Not Vulnerable: | |
Discussion
Sienzo Digital Music Mentor ActiveX Control SetEvalExpiryDate Method Buffer Overflow Vulnerability
Sienzo Digital Music Mentor is prone to a stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user data supplied to multiple ActiveX control methods.
An attacker can exploit this issue to execute arbitrary code in the context of a user running the application. Failed attempts will likely result in denial-of-service conditions.
Digital Music Mentor 2.6.0.4 is vulnerable; other versions may also be affected.
Sienzo Digital Music Mentor is prone to a stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user data supplied to multiple ActiveX control methods.
An attacker can exploit this issue to execute arbitrary code in the context of a user running the application. Failed attempts will likely result in denial-of-service conditions.
Digital Music Mentor 2.6.0.4 is vulnerable; other versions may also be affected.
Exploit / POC
Sienzo Digital Music Mentor ActiveX Control SetEvalExpiryDate Method Buffer Overflow Vulnerability
To exploit this issue, an attacker must entice an unsuspecting user to view a malicious webpage.
The following exploits are available:
To exploit this issue, an attacker must entice an unsuspecting user to view a malicious webpage.
The following exploits are available:
Solution / Fix
Sienzo Digital Music Mentor ActiveX Control SetEvalExpiryDate Method Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
Sienzo Digital Music Mentor ActiveX Control SetEvalExpiryDate Method Buffer Overflow Vulnerability
References:
References:
- Vendor Homepage (Sienzo)