1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP Virtual CD VC9API ActiveX Cmd Exec

HTTP Virtual CD VC9API ActiveX Cmd Exec

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempt to exploit a remote command-execution vulnerability by passing long arguments passed into a method of H+H Software Virtual CD VC9API.DLL ActiveX control.

Additional Information

Virtual CD is a CD emulator application for Windows.

Virtual CD 'vd9api.dll' ActiveX control is prone to a remote command-execution vulnerability. This issue affects the 'VCDLaunchAndWait' method. An attacker can pass arbitrary commands through the arguments of the affected script and carry out various attacks.

A successful attack can allow the attacker to gain unauthorized remote access to a vulnerable computer in the context of the affected user.

Virtual CD 9.0.0.2 is vulnerable to this issue; other versions may be affected as well.

Affected

  • H+H Software Virtual CD 9.0 2
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube