1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP Data Dynamics Abar File Overwrite

HTTP Data Dynamics Abar File Overwrite

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a file overwrite vulnerability in Data Dynamics ActiveBar Control.

Additional Information

Data Dynamics ActiveBar is a toolbar control for use on the Microsoft Windows operating system.

The ActiveX control is prone to a vulnerability that lets attackers overwrite arbitrary files on the victim's computer in the context of the vulnerable application using the ActiveX control (typically Internet Explorer). This issue occurs because the application fails to sanitize user-supplied input to the 'Save', 'SaveLayoutChanges', and 'SaveMenuUsageData' methods in the 'actbar3.ocx' library.

The vulnerability resides in the ActiveX control with the following CLSID:
{clsid:5407153D-022F-4CD2-8BFF-465569BC5DB8}.

An attacker can exploit this issue to overwrite arbitrary files on the victim's computer in the context of the vulnerable application using the ActiveX control (typically Internet Explorer). Failed exploit attempts will likely result in a denial-of-service condition.

These issues affect Data Dynamics ActiveBar 3.1; other versions may also be affected.

Affected

  • Data Dynamics ActiveBar ActiveX Control 3.1
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube