Anzio Web Print Object ActiveX Control Remote BOF Vulnerability Network Vulnerability

Summary

The host is running Anzio, which is prone to a heap-based buffer overflow vulnerability.

Impact

An attacker can execute arbitrary code causing a stack based buffer overflow by tricking a user to visit malicious web page. Impact Level : Application

Solution

Upgrade to Anzio Web Print Object version 3.2.30 http://www.anzio.com/download-wepo.htm

Insight

The flaw is due to an error while handling an overly long value in mainurl parameter.

Affected

Anzio Web Print Object versions prior to 3.2.30 on Windows (All)

References

http://en.securitylab.ru/poc/extra/358295.php
http://secunia.com/advisories/31554/
http://www.coresecurity.com/content/anzio-web-print-object-buffer-overflow

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-3480

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Photoshop PNG Image Processing Buffer Overflow Vulnerabilities (Mac OS X)
Buffer overflow in Apple Quicktime Player
Apple iTunes '.pls' Files Buffer Overflow Vulnerability
Citrix Provisioning Services 'streamprocess.exe' Component Remote Code Execution Vulnerability
Becky! Internet Mail Buffer Overflow Vulnerability

Take action and discover your vulnerabilities