1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Iseemedia Lpviewer 2

Web Attack: Iseemedia Lpviewer 2

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a buffer overflow vulnerability in iseemedia 'LPControl.dll' LPViewer ActiveX Control.

Additional Information

iseemedia LPViewer is an ActiveX component included in the file 'LPControl.dll'. This ActiveX component was formerly developed by MGI Software and Roxio.

The application is prone to multiple buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied data. These issues affect the 'url()', 'toolbar()', and 'enableZoomPastMax()' methods of the LPViewer ActiveX control. The ActiveX control can be identified by CLSID:

{3F0EECCE-E138-11D1-8712-0060083D83F5}

An attacker can exploit these issues to execute arbitrary code within the context of the application that invoked the ActiveX control (typically Internet Explorer). Failed exploit attempts will result in a denial-of-service condition.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube