Kaspersky Online Scanner KAVWebScan.DLL ActiveX Control Format String Vulnerability
BID:26004
Info
Kaspersky Online Scanner KAVWebScan.DLL ActiveX Control Format String Vulnerability
| Bugtraq ID: | 26004 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-3675 |
| Remote: | Yes |
| Local: | No |
| Published: | Oct 10 2007 12:00AM |
| Updated: | Apr 29 2009 11:56PM |
| Credit: | Stephen Fewer of Harmony Security is credited with discovering this issue. |
| Vulnerable: |
Kaspersky Online Scanner 5.0.93 .1 Kaspersky Online Scanner 5.0.93 .0 |
| Not Vulnerable: |
Kaspersky Online Scanner 5.0.98 .0 |
Discussion
Kaspersky Online Scanner KAVWebScan.DLL ActiveX Control Format String Vulnerability
The Kaspersky Online Scanner ActiveX control is prone to a remote format-string vulnerability because it fails to properly sanitize user-supplied data that contains format specifiers.
A successful attack will allow the attacker to execute arbitrary code in the context of an application using the control (typically Internet Explorer).
Kaspersky Online Scanner 5.0.93.1 and prior versions are vulnerable.
The Kaspersky Online Scanner ActiveX control is prone to a remote format-string vulnerability because it fails to properly sanitize user-supplied data that contains format specifiers.
A successful attack will allow the attacker to execute arbitrary code in the context of an application using the control (typically Internet Explorer).
Kaspersky Online Scanner 5.0.93.1 and prior versions are vulnerable.
Exploit / POC
Kaspersky Online Scanner KAVWebScan.DLL ActiveX Control Format String Vulnerability
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Kaspersky Online Scanner KAVWebScan.DLL ActiveX Control Format String Vulnerability
Solution:
The vendor released Kaspersky Online Scanner 5.0.98.0 to address this issue. Please see the references for more information.
Solution:
The vendor released Kaspersky Online Scanner 5.0.98.0 to address this issue. Please see the references for more information.
References
Kaspersky Online Scanner KAVWebScan.DLL ActiveX Control Format String Vulnerability
References:
References:
- Kaspersky Lab announces the release of a new version of its free Kaspersky Onlin (Kaspersky Lab)
- Kaspersky Online Scanner Download Page (Kaspersky Lab)
- Kaspersky Online Scanner Homepage (Kaspersky Lab)
- Kaspersky Web Scanner ActiveX Format String Vulnerability (iDefense Labs)
- Microsoft Knowledge Base Article 240797 (Microsoft)
- iDefense Security Advisory 10.10.07: Kaspersky Web Scanner ActiveX Format String (iDefense Labs)