1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. MSIE WMITools WebSingleView ActiveX BO

MSIE WMITools WebSingleView ActiveX BO

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to arbitrary code execution in activex WBEMSingleView.ocx of WMI Administrative Tools.

Additional Information

WMI Administrative Tools is prone to a vulnerability that lets attackers execute arbitrary code.WBEMSingleView.ocx has a method AddContextRef,which could directly call the address give as parameters.
Successfully exploiting these issues will allow attackers to execute arbitrary within the context of the application (typically Internet Explorer) that uses the ActiveX control.

Affected

  • IE
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube