1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP Digital Data Comms Rtsp ActiveX BO

HTTP Digital Data Comms Rtsp ActiveX BO

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects an attempt to exploit a buffer-overflow vulnerability in the Digital Data Communications RtspVaPgCtrl ActiveX control resulting in remote code execution.

Additional Information

Digital Data Communications RtspVaPgCtrl ActiveX control is used for interacting with Level1 IP camera devices via Internet Explorer.

The RtspVaPgCtrl ActiveX control is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. This issue affects the 'MP4Prefix' attribute of the control, which is identified with CLSID: 361E6B79-4A69-4376-B0F2-3D1EBEE9D7E2

An attacker can exploit this issue by enticing an unsuspecting user to view a malicious HTML page.

Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the application using the ActiveX control (typically Internet Explorer). Failed exploit attempts likely result in denial-of-service conditions.

This issue affects 'RtspVapgDecoder.dll' version 1.1.0.29; other versions may also be vulnerable.

Affected

  • Digital Data Communications RtspVapgDecoder.dll 1.1.0.29
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube