1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP Anzio Web Print Object ActiveX BO

HTTP Anzio Web Print Object ActiveX BO

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects an attempt to exploit a buffer overflow vulnerability that exists in the Anzio Web Print Object ActiveX Control.

Additional Information

Anzio Web Print Object is an ActiveX object that allows users to push print jobs from files to a user's printer without displaying it in HTML.

Anzio Web Print Object ActiveX control is prone to a heap-based buffer-overflow vulnerability because the application fails to perform adequate boundary-checks on user-supplied input. The vulnerability affects the 'mainurl' attribute of the WePO ActiveX control. The ActiveX control can be identified by CLSID:

4CE8026D-5DBF-48C9-B6E9-14A2B1974A3D

An attacker can exploit this issue to execute arbitrary code in the context of an application using the ActiveX control (typically Internet Explorer). Failed attacks will likely cause denial-of-service conditions.

The following applications are affected.

- Anzio Web Print Object 3.2.19
- Anzio Web Print Object 3.2.24
- Anzio Print Wizard Server Edition 3.2.19
- Anzio Print Wizard Personal Edition 3.2.19

Affected

  • Anzio Web Print Object Server Edition 3.2.24
  • Anzio Web Print Object Personal Edition 3.2.19
  • Anzio Web Print Object 3.2.24
  • Anzio Web Print Object 3.2.19

Response

The vendor released an update to address this issue. Please see the references for more information.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube