RETIRED: Musiclab BearShare NCTAudioFile2 ActiveX Control Buffer Overflow Vulnerability
BID:23892
Info
RETIRED: Musiclab BearShare NCTAudioFile2 ActiveX Control Buffer Overflow Vulnerability
| Bugtraq ID: | 23892 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-0018 |
| Remote: | Yes |
| Local: | No |
| Published: | May 09 2007 12:00AM |
| Updated: | May 09 2007 10:09PM |
| Credit: | Carsten Eiram of Secunia Research discovered this issue. |
| Vulnerable: |
Musiclab BearShare 6.0.2 .26789 |
| Not Vulnerable: | |
Discussion
RETIRED: Musiclab BearShare NCTAudioFile2 ActiveX Control Buffer Overflow Vulnerability
BearShare NCTAudioFile2 ActiveX control is prone to a buffer-overflow vulnerability because it fails to sufficiently bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.
Successful attacks corrupt process memory, allowing arbitrary code to run in the context of the client application using the affected ActiveX control.
BearShare 6.0.2.26789 is reported vulnerable to this issue; other versions may be affected as well.
This issue is a duplicate of BID 22196 (NCTsoft NCTAudioFile2 ActiveX Control Remote Buffer Overflow Vulnerability) and is therefore being retired.
BearShare NCTAudioFile2 ActiveX control is prone to a buffer-overflow vulnerability because it fails to sufficiently bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.
Successful attacks corrupt process memory, allowing arbitrary code to run in the context of the client application using the affected ActiveX control.
BearShare 6.0.2.26789 is reported vulnerable to this issue; other versions may be affected as well.
This issue is a duplicate of BID 22196 (NCTsoft NCTAudioFile2 ActiveX Control Remote Buffer Overflow Vulnerability) and is therefore being retired.
Exploit / POC
RETIRED: Musiclab BearShare NCTAudioFile2 ActiveX Control Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution / Fix
RETIRED: Musiclab BearShare NCTAudioFile2 ActiveX Control Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
RETIRED: Musiclab BearShare NCTAudioFile2 ActiveX Control Buffer Overflow Vulnerability
References:
References:
- BearShare NCTAudioFile2 ActiveX Control Buffer Overflow (Secunia)
- BearShare Product Page (Musiclab)