1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP Swiftview ActiveX BO

HTTP Swiftview ActiveX BO

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a buffer overflow vulnerability in SwiftView.

Additional Information

SwiftView is an application used to print or view PCL, HPGL, and TIFF files.

SwiftView is prone to a stack-based buffer-overflow vulnerability. This issue affects the ActiveX control provided by 'svocx.ocx', identified by CLSID: {7DD62E58-5FA8-11D2-AFB7-00104B64F126}. The browser plugin version of the application is also affected; it is provided by 'npsview.dll'.

Attackers can exploit this issue to execute arbitrary code in the context of the application using the affected application. Successful attacks can compromise the application and possibly the underlying computer. Failed attacks will likely cause denial-of-service conditions.

Response

The vendor has addressed this issue in SwiftView 8.3.5.

Additional References

  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube