1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Oracle Autovue SaveViewStateToFile

Web Attack: Oracle Autovue SaveViewStateToFile

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit file overwrite in Oracle AutoVue

Additional Information

Oracle AutoVue is a suite of visualization applications.

Oracle AutoVue 'AutoVueX.ocx' ActiveX control is prone to a vulnerability caused by an insecure method. The issue occurs because the application fails to handle user-supplied input to the 'SaveViewStateToFile()' method. The control is identified by CLSID:

B6FCC215-D303-11D1-BC6C-0000C078797F

Successfully exploiting this issue will allow attackers to create or overwrite arbitrary files on the victim's computer within the context of the affected application (typically Internet Explorer) that uses the ActiveX control.

Oracle AutoVue 20.0.1 is vulnerable; other versions may also be affected.

Affected

  • Oracle AutoVue 20.0.1 is vulnerable; other versions may also be affected.

Response

Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.

Additional References

  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube