Jump to content
Sign in to follow this  
goncal

CDBXPP security hole! Compromised ActiveX control in v3.0.11

Recommended Posts

Hi!

I have just found that, according to a recent nessus scan, CDBXPP 3.0.116 installs an ActiveX control that is affected by a serious security hole. Although the nessus report points to WinZIP as the possible culprit (WinZIP is actually NOT installed on my computer), I have found that the real culprit is CDBXPP.

=======

Here goes the NESSUS scan report:

Synopsis :

The remote Windows host has an ActiveX control that is affected by an arbitrary code execution and buffer overflow vulnerabilities.

Description :

The remote host contains a version of the 'FileView' ActiveX control from Sky Software and included in third-party products such as WinZip.

The version of this ActiveX control on the remote host reportedly exposes several methods that either can be used to execute arbitrary code or are affected by buffer overflow vulnerabilities. If an attacker can trick a user on the affected host into visiting a specially-crafted web page, he can leverage these issues to execute arbitrary code on the host subject to the user's privileges.

See also :

http://www.zerodayinitiative.com/adviso ... 6-040.html

http://archives.neohapsis.com/archives/ ... /0247.html

http://www.kb.cert.org/vuls/id/225217

http://www.winzip.com/wz7245.htm

Risk factor :

High / CVSS Base Score : 9.3

(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)

CVE : CVE-2006-3890, CVE-2006-5198

BID : 21060, 21108

===========================================

The registry search for the activeX control in my computer points to C:\Program Files\CDBurnerXP Pro 3\filevw52.ocx, thus confirming that it came from CDBXPP. I guess it's time to uninstall the program, at least until a patched version comes out :-(

Share this post


Link to post
Share on other sites

Probably fixed in the upcoming release...but there is not that much risk unless you burn a CD and surf with Internet Explorer and visit at bad site at the same time. There will not and cannot be an update for 3.0.x.

Share this post


Link to post
Share on other sites
Sign in to follow this  

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.