Anzio Web Print Object ActiveX Control Remote BOF Vulnerability Network Vulnerability

Summary

The host is running Anzio, which is prone to a heap-based buffer overflow vulnerability.

Impact

An attacker can execute arbitrary code causing a stack based buffer overflow by tricking a user to visit malicious web page. Impact Level : Application

Solution

Upgrade to Anzio Web Print Object version 3.2.30 http://www.anzio.com/download-wepo.htm

Insight

The flaw is due to an error while handling an overly long value in mainurl parameter.

Affected

Anzio Web Print Object versions prior to 3.2.30 on Windows (All)

References

http://en.securitylab.ru/poc/extra/358295.php
http://secunia.com/advisories/31554/
http://www.coresecurity.com/content/anzio-web-print-object-buffer-overflow

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-3480

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Active Perl 'Perl_repeatcpy()' Function Buffer Overflow Vulnerability (Windows)
Adobe Flash Player Multiple Vulnerabilities - Mar09 (Win)
ClamAV 'find_stream_bounds()' function Buffer Overflow Vulnerability
Adobe Photoshop Multiple Buffer Overflow Vulnerabilities
Apple QuickTime Multiple Vulnerabilities - Sep09

Take action and discover your vulnerabilities