Microsoft Windows Image Acquisition Logger ActiveX Control Arbitrary File Overwrite Vulnerability

Bugtraq ID:	31069
Class:	Input Validation Error
CVE:	CVE-2008-3957
Remote:	Yes
Local:	No
Published:	Sep 08 2008 12:00AM
Updated:	May 07 2015 05:24PM
Credit:	Ciph3r
Vulnerable:	Microsoft Windows Image Aquisition Logger 0
Not Vulnerable:

Microsoft Windows Image Acquisition Logger ActiveX Control Arbitrary File Overwrite Vulnerability

Microsoft Windows Image Acquisition Logger ActiveX control is prone to a vulnerability that lets attackers overwrite files with arbitrary, attacker-controlled content. The issue occurs because the control fails to sanitize user-supplied input.

An attacker can exploit this issue to overwrite files with attacker-supplied data, which will aid in further attacks.

Microsoft Windows Image Acquisition Logger ActiveX Control Arbitrary File Overwrite Vulnerability

To exploit this issue, an attacker must entice an unsuspecting victim into viewing a malicious web page.

The following example exploit code is available:

• /data/vulnerabilities/exploits/31069
• /data/vulnerabilities/exploits/MS_ImagePoc-31069.cpp

Microsoft Windows Image Acquisition Logger ActiveX Control Arbitrary File Overwrite Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Microsoft Windows Image Acquisition Logger ActiveX Control Arbitrary File Overwrite Vulnerability

References:

• Microsoft Homepage (Microsoft)
  
• Microsoft Knowledge Base Article 240797 (Microsoft)