WEB-ACTIVEX Creative Software AutoUpdate Engine ActiveX Control Buffer Overflow (CVE-2008-0955)

Rule ID

1054991

Severity

High

Description

A stack buffer overflow vulnerability was disclosed in Creative Software AutoUpdate Engine. When sending an overly long string to the cachefolder() property of CTSUEng.ocx an attacker may be able to execute arbitrary code.

Impact

Remote code execution

Recommendation

Update vendor's patch.

IPS Category

Buffer Overflow

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2008-0955

EDB-5681

EDB-16539

msf

T1574

T1499.004

Keywords

N/A

Date Created

2011/09/14

Last Updated

2022/09/20

This website uses cookies to ensure you get the best experience on our website.