1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP Netsprint Toolbar ActiveX BO

HTTP Netsprint Toolbar ActiveX BO

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a buffer overflow vulnerability in NetSprint Toolbar.

Additional Information

NetSprint Toolbar is a browser-toolbar plugin for Microsoft Internet Explorer or Mozilla Firefox on the Microsoft Windows platform.

NetSprint Toolbar ActiveX control is prone to a denial-of-service vulnerability.

This issue presents itself in the 'isChecked' function, which is provided by the 'toolbar.dll' library. Although very little information is currently available, this issue could be a NULL-pointer dereference flaw, a problem related to memory management, or potentially a buffer-overflow vulnerability. This BID will be updated as more information emerges.

Exploiting this issue allows remote attackers to crash applications that employ the vulnerable controls (typically Microsoft Internet Explorer). Attackers may potentially be able to exploit this issue to execute code, but this has not been confirmed.

NetSprint Toolbar ActiveX Control 1.1 is vulnerable to this issue; other versions may also be vulnerable.

Affected

  • NetSprint NetSprint Toolbar 1.1
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube