DB Software Laboratory VImpX ActiveX Control Buffer Overflow Vulnerability

Bugtraq ID:	23953
Class:	Boundary Condition Error
CVE:	CVE-2007-2667
Remote:	Yes
Local:	No
Published:	May 13 2007 12:00AM
Updated:	May 07 2015 05:39PM
Credit:	rgod is credited with the discovery of this vulnerability.
Vulnerable:	DB Software Laboratory VImpX 4.8.8 0 DB Software Laboratory VImpX 4.7.3.0
Not Vulnerable:

DB Software Laboratory VImpX ActiveX Control Buffer Overflow Vulnerability

The 'VImpX.ocx' ActiveX control shipped with the VImpX application is prone to a buffer-overflow vulnerability. The software fails to perform sufficient boundary checks of user-supplied input before copying it to an insufficiently sized memory buffer.

VImpX 4.8.8.0 on Windows XP Service Pack 3 is vulnerable; other products may be vulnerable as well.

DB Software Laboratory VImpX ActiveX Control Buffer Overflow Vulnerability

To exploit this issue, an attacker must entice an unsuspecting user to view a malicious webpage.

The following exploits are available:

• /data/vulnerabilities/exploits/VImpX_ActiveX_rexp.txt
• /data/vulnerabilities/exploits/31907.html

DB Software Laboratory VImpX ActiveX Control Buffer Overflow Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

DB Software Laboratory VImpX ActiveX Control Buffer Overflow Vulnerability

References:

• Microsoft Knowledge Base Article 240797 (Microsoft)
  
• Vendor Homepage (DB Software Laboratory)
  
• VImpX Homepage (DB Software Laboratory)