Baidu Soba Search Bar BaiduBar.DLL ActiveX Control Remote Code Execution Vulnerability
BID:25121
Info
Baidu Soba Search Bar BaiduBar.DLL ActiveX Control Remote Code Execution Vulnerability
| Bugtraq ID: | 25121 |
| Class: | Design Error |
| CVE: |
CVE-2007-4105 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 29 2007 12:00AM |
| Updated: | May 07 2015 05:36PM |
| Credit: | Cocoruder of Fortinet Security Research Team discovered this vulnerability. |
| Vulnerable: |
Baidu Soba Search Bar 5.4 |
| Not Vulnerable: | |
Discussion
Baidu Soba Search Bar BaiduBar.DLL ActiveX Control Remote Code Execution Vulnerability
An ActiveX control installed with Baidu Soba search bar is prone to a remote code-execution vulnerability.
An attacker can exploit this issue to execute hostile code on a victim's computer in the context of the vulnerable application using the ActiveX control (typically Internet Explorer). Successful exploits will allow attackers to execute arbitrary code with the privileges of the affected user; other consequences are possible.
This issue affects Baidu Soba 5.4; other versions may also be affected.
An ActiveX control installed with Baidu Soba search bar is prone to a remote code-execution vulnerability.
An attacker can exploit this issue to execute hostile code on a victim's computer in the context of the vulnerable application using the ActiveX control (typically Internet Explorer). Successful exploits will allow attackers to execute arbitrary code with the privileges of the affected user; other consequences are possible.
This issue affects Baidu Soba 5.4; other versions may also be affected.
Exploit / POC
Baidu Soba Search Bar BaiduBar.DLL ActiveX Control Remote Code Execution Vulnerability
To exploit this issue, an attacker must entice an unsuspecting user to view a maliciously crafted web page.
UPDATE (October 3, 2007): Further investigation indicates that this issue is being actively exploited in the wild.
The following exploit code is available:
To exploit this issue, an attacker must entice an unsuspecting user to view a maliciously crafted web page.
UPDATE (October 3, 2007): Further investigation indicates that this issue is being actively exploited in the wild.
The following exploit code is available:
Solution / Fix
Baidu Soba Search Bar BaiduBar.DLL ActiveX Control Remote Code Execution Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Baidu Soba Search Bar BaiduBar.DLL ActiveX Control Remote Code Execution Vulnerability
References:
References:
- Baidu Soba Homepage (Baidu)
- Microsoft Knowledge Base Article 240797 (Microsoft)
- Baidu Soba Remote Code Execute Vulnerability(FGA-2007-10) (hfli)
- A Vulnerability Affecting Baidu Soba Search Bar (Fortiguard Center)