RETIRED: Multiple HP Products hpqutil.dll ActiveX Control Heap Buffer Overflow Vulnerability
BID:25673
Info
RETIRED: Multiple HP Products hpqutil.dll ActiveX Control Heap Buffer Overflow Vulnerability
| Bugtraq ID: | 25673 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 14 2007 12:00AM |
| Updated: | Sep 20 2007 08:50PM |
| Credit: | The GOODFELLAS security research team is credited with the discovery of this vulnerability. |
| Vulnerable: |
HP Photo and Image Gallery 1.1 HP All-in-One Series Web Release 0 |
| Not Vulnerable: | |
Discussion
RETIRED: Multiple HP Products hpqutil.dll ActiveX Control Heap Buffer Overflow Vulnerability
HP All-in-One Series Web Release and HP Photo and Imaging Gallery are prone to a heap-based buffer-overflow vulnerability because the applications fail to perform adequate boundary-checks on user-supplied data.
Successfully exploiting this issue will allow an attacker to execute arbitrary code within the context of the application using the ActiveX control (typically Internet Explorer). Failed exploit attempts will result in a denial-of-service condition.
NOTE: This BID is being retired because the vulnerability discussed is covered in BID 25697 (Microsoft MFC Library CFileFind::FindFile Buffer Overflow Vulnerability).
HP All-in-One Series Web Release and HP Photo and Imaging Gallery are prone to a heap-based buffer-overflow vulnerability because the applications fail to perform adequate boundary-checks on user-supplied data.
Successfully exploiting this issue will allow an attacker to execute arbitrary code within the context of the application using the ActiveX control (typically Internet Explorer). Failed exploit attempts will result in a denial-of-service condition.
NOTE: This BID is being retired because the vulnerability discussed is covered in BID 25697 (Microsoft MFC Library CFileFind::FindFile Buffer Overflow Vulnerability).
Exploit / POC
RETIRED: Multiple HP Products hpqutil.dll ActiveX Control Heap Buffer Overflow Vulnerability
An attacker may exploit this issue by enticing a victim into visiting a malicious webpage.
The following proof of concept is available.
An attacker may exploit this issue by enticing a victim into visiting a malicious webpage.
The following proof of concept is available.
Solution / Fix
RETIRED: Multiple HP Products hpqutil.dll ActiveX Control Heap Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
RETIRED: Multiple HP Products hpqutil.dll ActiveX Control Heap Buffer Overflow Vulnerability
References:
References: