EDraw Flowchart ActiveX Control '.edd' File Buffer Overflow Vulnerability
BID:39642
Info
EDraw Flowchart ActiveX Control '.edd' File Buffer Overflow Vulnerability
| Bugtraq ID: | 39642 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 22 2010 12:00AM |
| Updated: | Apr 22 2010 12:00AM |
| Credit: | Gjoko Krstic |
| Vulnerable: |
EDraw Flowchart ActiveX Control 2.3 .6 |
| Not Vulnerable: | |
Discussion
EDraw Flowchart ActiveX Control '.edd' File Buffer Overflow Vulnerability
The EDraw Flowchart ActiveX control is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary-checks on user-supplied data.
An attacker can exploit this issue to execute arbitrary code within the context of the affected application, typically Internet Explorer, that uses the ActiveX control. Failed exploit attempts will result in a denial-of-service condition.
The EDraw Flowchart ActiveX control is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary-checks on user-supplied data.
An attacker can exploit this issue to execute arbitrary code within the context of the affected application, typically Internet Explorer, that uses the ActiveX control. Failed exploit attempts will result in a denial-of-service condition.
Exploit / POC
EDraw Flowchart ActiveX Control '.edd' File Buffer Overflow Vulnerability
To exploit this issue, an attacker must entice an unsuspecting user to open a malicious '.edd' file.
The following proof of concept is available:
To exploit this issue, an attacker must entice an unsuspecting user to open a malicious '.edd' file.
The following proof of concept is available:
Solution / Fix
EDraw Flowchart ActiveX Control '.edd' File Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
EDraw Flowchart ActiveX Control '.edd' File Buffer Overflow Vulnerability
References:
References:
- EDraw Flowchart ActiveX Control 2.3 (.edd parsing) Remote Buffer Overflow PoC (Gjoko Krstic )
- Edraw Flowchart ActiveX Control Homepage (Edrawsoft)
- Microsoft Knowledge Base Article 240797 (Microsoft)