Threat Level: green Handler on Duty: Jan Kopriva

SANS ISC: Creative Software AutoUpdate Engine ActiveX stack buffer overflow SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Creative Software AutoUpdate Engine ActiveX stack buffer overflow

Reader Mark wrote in with a bit of intel about a Stack Based Buffer Overflow for Creative Software's AutoUpdate Engine through ActiveX.

Thanks to Mark and eEye who provided the vulnerability information here.

CLSID (Killbit) for this one is: 0A5FD7C5-A45C-49FC-ADB5-9952547D5715

 

For more information than you can stand about Killbits and how to set them check out a Google search of our own site.

 

 

 

--

Joel Esler

http://www.joelesler.net

Joel

454 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!