1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP IBiz EBanking Active File Overwrite

HTTP IBiz EBanking Active File Overwrite

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempt to exploit a file overwrite vulnerability by passing specially crafted arguments into a method of IBiz E-Banking Integrator V2 ActiveX Control.

Additional Information

An IBiz E-Banking Integrator ActiveX control is prone to a vulnerability that allows attackers to create or overwrite arbitrary data with the privileges of the application using the control (typically Internet Explorer).

Successful exploits can compromise affected computers or cause denial-of-service conditions; other attacks are possible.

Affected

  • IBiz E-Banking Integrator 2.0 is vulnerable; other versions may also be affected.

Response

Download and install all vendor patches related to this vulnerability.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube