Threat Monitor
Troj.Exploit.W32.ActiveX.A
| Aliase: | |
|---|---|
| Pattern: | 200906271330 |
| Threat Typ | Verbreitung | Betroffene Systeme | Gefährlichkeit |
|---|---|---|---|
|
|
|
|
This malicious program exploits vulnerability CVE-2007-3282.
Microsoft Office MSODataSourceControl ActiveX control with the CLSID:0002E55B-0000-0000-C000-000000000046 is prone to a buffer-overflow vulnerability. The flaw occurs when an excessive amount of data is passed to the 'HelpPopup' method of the 'DeleteRecordSourceIfUnused()' method of the MSODataSourceControl ActiveX control. It triggers a buffer overflow by persuading a victim to visit a specially crafted Web page that passes an overly long argument to the DeleteRecordSourceIfUnused method. The remote attacker can then execute arbitrary code on the target system or cause the victim's browser to crash.
The sample is a demonstration. IE7 will crash if the sample runs in the system with the Office 2003.
Affected Versions: Microsoft Office 2003 SP3
Microsoft Office 2003 SP2
Microsoft Office 2003 SP1
Microsoft Office MSODataSourceControl ActiveX control with the CLSID:0002E55B-0000-0000-C000-000000000046 is prone to a buffer-overflow vulnerability. The flaw occurs when an excessive amount of data is passed to the 'HelpPopup' method of the 'DeleteRecordSourceIfUnused()' method of the MSODataSourceControl ActiveX control. It triggers a buffer overflow by persuading a victim to visit a specially crafted Web page that passes an overly long argument to the DeleteRecordSourceIfUnused method. The remote attacker can then execute arbitrary code on the target system or cause the victim's browser to crash.
The sample is a demonstration. IE7 will crash if the sample runs in the system with the Office 2003.
Affected Versions: Microsoft Office 2003 SP3
Microsoft Office 2003 SP2
Microsoft Office 2003 SP1
