BlueSkyChat ActiveX Control Buffer Overflow Vulnerability
BID:25149
Info
BlueSkyChat ActiveX Control Buffer Overflow Vulnerability
| Bugtraq ID: | 25149 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-4145 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 31 2007 12:00AM |
| Updated: | May 07 2015 05:36PM |
| Credit: | Code Audit Labs is credited with discovering this issue. |
| Vulnerable: |
Bluesky BlueskyChat ActiveX Control 8.1.2 .0 |
| Not Vulnerable: | |
Discussion
BlueSkyChat ActiveX Control Buffer Overflow Vulnerability
BlueSkyChat ActiveX control is prone to a buffer-overflow vulnerability because it fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the application using the ActiveX control (typically Internet Explorer). Failed exploit attempts likely result in denial-of-service conditions.
BlueSkyChat ActiveX control 8.1.2.0 is vulnerable to this issue; other versions may also be affected.
BlueSkyChat ActiveX control is prone to a buffer-overflow vulnerability because it fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the application using the ActiveX control (typically Internet Explorer). Failed exploit attempts likely result in denial-of-service conditions.
BlueSkyChat ActiveX control 8.1.2.0 is vulnerable to this issue; other versions may also be affected.
Exploit / POC
BlueSkyChat ActiveX Control Buffer Overflow Vulnerability
The following proof-of-concept exploit is available:
The following proof-of-concept exploit is available:
Solution / Fix
BlueSkyChat ActiveX Control Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
BlueSkyChat ActiveX Control Buffer Overflow Vulnerability
References:
References:
- Bluesky Home Page (Bluesky)
- Microsoft Support Document 240797 (Microsoft)
- CAL-20070730-1 BlueSkyCat ActiveX Remote Heap Overflow vulnerability (Code Audit Labs