1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP Vantage ActiveX BO

HTTP Vantage ActiveX BO

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempt to exploit a buffer overflow vulnerability in several Vantage ActiveX controls.

Additional Information

Significant vulnerability details are not available. This vulnerability is noted in the write-up in a Microsoft Security Bulletin for KB942615 Cumulative Security Update for Internet Explorer. However, details and references were not provided. The bulletin provides the following text:

This security update sets a kill bit for ActiveX controls available from Vantage. Vantage has released a security bulletin and an update that addresses a vulnerability in the effected components. For more information and download locations, see the security bulletin from Vantage. This kill bit is being set at the request of the owner of the ActiveX control. The class identifiers (CLSID) for this ActiveX control are:

* {c1908682-7b2c-4ab0-b98e-183649a0bf84}
* {0f6a72b9-d3c5-4fce-89a3-4e3d19c3580a}
* {66b4546f-c263-11d1-b1c9-444553540000}

Affected

  • Vantage

Response

Ensure that all available patches from the vendor have been applied.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube