BID:53011

ActiveScriptRuby 'GRScript18.dll' ActiveX Control DLL Loading Arbitrary Code Execution Vulnerability

CVE-2012-1241 |

Info

ActiveScriptRuby 'GRScript18.dll' ActiveX Control DLL Loading Arbitrary Code Execution Vulnerability

Bugtraq ID:	53011
Class:	Design Error
CVE:	CVE-2012-1241
Remote:	Yes
Local:	No
Published:	Apr 13 2012 12:00AM
Updated:	Apr 13 2012 12:00AM
Credit:	JVN credits Moca
Vulnerable:	ActiveScriptRuby ActiveScriptRuby 1.8.7.34 ActiveScriptRuby ActiveScriptRuby 0

Not Vulnerable:

Discussion

ActiveScriptRuby 'GRScript18.dll' ActiveX Control DLL Loading Arbitrary Code Execution Vulnerability

ActiveScriptRuby ActiveX Control is prone to a vulnerability that lets attackers execute arbitrary code.

An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location that contains a specially crafted Dynamic Link Library (DLL) file.

Exploit / POC

ActiveScriptRuby 'GRScript18.dll' ActiveX Control DLL Loading Arbitrary Code Execution Vulnerability

A general exploit technique has been documented by TheLeader and H.D. Moore for the Metasploit Project; please see the references for more information.

Solution / Fix

ActiveScriptRuby 'GRScript18.dll' ActiveX Control DLL Loading Arbitrary Code Execution Vulnerability

Solution:
Updates are available. Please see the references for details.

References

ActiveScriptRuby 'GRScript18.dll' ActiveX Control DLL Loading Arbitrary Code Execution Vulnerability

References:

Secunia Research: DVR Remote ActiveX Control DVRobot Library Loading Vulnerabili (Secunia)
SunPlus Electronics Homepage (SunPlus Electronics Corp)