EDraw Office Viewer Component FtpDownloadFile ActiveX Buffer Overflow Vulnerability

Bugtraq ID:	25892
Class:	Boundary Condition Error
CVE:	CVE-2007-5257
Remote:	Yes
Local:	No
Published:	Oct 01 2007 12:00AM
Updated:	Apr 16 2015 06:08PM
Credit:	shinnai is credited with the discovery of this issue.
Vulnerable:	EDraw Office Viewer Component 5.3
Not Vulnerable:	EDraw Office Viewer Component 5.3.288 .1

EDraw Office Viewer Component FtpDownloadFile ActiveX Buffer Overflow Vulnerability

EDraw Office Viewer Component ActiveX control is prone to a buffer-overflow vulnerability because it fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.

An attacker can exploit this issue to cause a denial-of-service condition and possibly to execute arbitrary code, but has not been confirmed.

This issue affects EDraw Office Viewer Component 5.3; other versions may also be affected.

EDraw Office Viewer Component FtpDownloadFile ActiveX Buffer Overflow Vulnerability

To exploit this issue, an attacker must entice an unsuspecting user to access a malicious webpage.

The following proof of concept is available:

• /data/vulnerabilities/exploits/25892.html

EDraw Office Viewer Component FtpDownloadFile ActiveX Buffer Overflow Vulnerability

Solution:
The vendor released Office Viewer Component 5.3.288.1 to address this issue. Please see the references for more information.

EDraw Office Viewer Component FtpDownloadFile ActiveX Buffer Overflow Vulnerability

References:

• Microsoft Knowledge Base Article 240797 (Microsoft)
  
• Office Viewer Component Homepage (EDraw)
  
• EDraw Office Viewer Component 5.3 Released (EDraw)