1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP Corel Activegsm Activex BO

HTTP Corel Activegsm Activex BO

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a buffer overflow vulnerability in Corel ActiveCGM Browser ActiveX.

Additional Information

Corel ActiveCGM Browser ActiveX control allows users to view Computer Graphics Metafiles (CGMs) in a browser.

Corel ActiveCGM Browser is prone to multiple buffer-overflow vulnerabilities because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.

Specfically, these issues reside in the 'acgm.dll' ActiveX control with CLSID: {F5D98C43-DB16-11cf-8ECA-0000C0FD59C7}

Successfully exploiting these issues allows remote attackers to execute arbitrary code in the context of applications that use the affected control (typically Internet Explorer).

Affected

  • Corel ActiveCGM Browser ActiveX control 7.1.4.19
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube