1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP DB Software Lab ActiveX File Overwrite

HTTP DB Software Lab ActiveX File Overwrite

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects multiple file-corruption vulnerabilities in the DB Software Laboratory ActiveX control.

Additional Information

VImpX is an ActiveX control that imports data into various databases.

DB Software Laboratory 'VImpX.ocx' ActiveX control is prone to multiple file-corruption vulnerabilities.

These issues affect the 'ClearLogFile()' and 'SaveToFile()' methods of the ActiveX control identified by CLSID:

7600707B-9F47-416D-8AB5-6FD96EA37968

Attackers can exploit these issues to delete or overwrite arbitrary files on the affected computer in the context of the application using the ActiveX control (typically Internet Explorer). Successful attacks can result in denial-of-service conditions. Additional attacks may be possible if the attacker can manipulate log data, but this has not been confirmed.

Affected

  • VImpX 4.8.8.0 is vulnerable; other versions may also be affected.

Response

Download and install all vendor patches related to this vulnerability.

Additional References

  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube