Ultra Crypto Component ActiveX Control SaveToFile Arbitrary File Overwrite Vulnerability

Bugtraq ID:	25611
Class:	Design Error
CVE:	CVE-2007-4902
Remote:	Yes
Local:	No
Published:	Sep 10 2007 12:00AM
Updated:	May 07 2015 05:35PM
Credit:	shinnai is credited with the discovery of this issue.
Vulnerable:	Ultra Shareware Ultra Crypto Component 0
Not Vulnerable:

Ultra Crypto Component ActiveX Control SaveToFile Arbitrary File Overwrite Vulnerability

Ultra Crypto Component ActiveX Control is prone to a vulnerability that lets attackers overwrite arbitrary files.

An attacker can exploit this issue to overwrite files with arbitrary, attacker-controlled content. This will aid in further attacks.

Ultra Crypto Component ActiveX Control SaveToFile Arbitrary File Overwrite Vulnerability

Sample exploit code has been provided:

• /data/vulnerabilities/exploits/25611.html

Ultra Crypto Component ActiveX Control SaveToFile Arbitrary File Overwrite Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Ultra Crypto Component ActiveX Control SaveToFile Arbitrary File Overwrite Vulnerability

References:

• Microsoft Knowledge Base Article 240797 (Microsoft)
  
• Ultra Crypto Component Homepage (Ultra Shareware)