TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

711

712

713

714

715

716

717

718

719

720

ProCurve TMS zl Module IPS/IDS Signature

Reference Guide Version RLX.10.2.2.94

712

buffer and execute arbitrary code on the system with the privileges of the user or cause the victim's browser to crash.

No remedy is available as of September 2007. Users are advised to set the killbit for for the vulnerable ActiveX

control's CLSID A6F36F3F-3AE0-458B-AFC4-AA82565E0BF8. This signature detects attacks using CLSID in UTF

encoding.

Signature ID: 30423

ACTi Network Video Recorder nvUnifiedControl ActiveX Control SetText Method Buffer

Overflow Vulnerability

Threat Level: Severe

Industry ID: CVE-2007-4582 CVE-2007-4583 Bugtraq: 25465

Signature Description: ACTi NVR system records video and audio and data information. The NVR

nvUnifiedControl.AUnifiedControl.1 ActiveX control (nvUnifiedControl.dll 1.1.45.0) in ACTi Network Video

Recorder (NVR) SP2 2.0 is vulnerable to a heap-based buffer overflow. By persuading a victim to visit a specially-

crafted Web page that passes an overly long argument to the SetText() function, a remote attacker could overflow a

buffer and execute arbitrary code on the system with the privileges of the user or cause the victim's browser to crash.

No remedy is available as of September 2007. Users are advised to set the killbit for for the vulnerable ActiveX

control's CLSID A6F36F3F-3AE0-458B-AFC4-AA82565E0BF8. This signature detects attacks using PROGID and

%uHHHH encoding.

Signature ID: 30424

ACTi Network Video Recorder nvUnifiedControl ActiveX Control SetText Method Buffer

Overflow Vulnerability

Threat Level: Severe

Industry ID: CVE-2007-4582 CVE-2007-4583 Bugtraq: 25465

Signature Description: ACTi NVR system records video and audio and data information. The NVR

nvUnifiedControl.AUnifiedControl.1 ActiveX control (nvUnifiedControl.dll 1.1.45.0) in ACTi Network Video

Recorder (NVR) SP2 2.0 is vulnerable to a heap-based buffer overflow. By persuading a victim to visit a specially-

crafted Web page that passes an overly long argument to the SetText() function, a remote attacker could overflow a

buffer and execute arbitrary code on the system with the privileges of the user or cause the victim's browser to crash.

No remedy is available as of September 2007. Users are advised to set the killbit for for the vulnerable ActiveX

control's CLSID A6F36F3F-3AE0-458B-AFC4-AA82565E0BF8. This signature detects attacks using PROGID and

%HH encoding.

Signature ID: 30425

ACTi Network Video Recorder nvUtility ActiveX Control SaveXMLFile/DeleteXMLFile

Method File Modification Vulnerability

Threat Level: Severe

Industry ID: CVE-2007-4583 Bugtraq: 25465

Signature Description: ACTi NVR system records video and audio and data information. The NVR nvUtility.Utility.1

ActiveX control (nvUtility.dll 1.0.14.0) in ACTi Network Video Recorder (NVR) SP2 2.0 is vulnerable to unauthorized

file access via SaveXMLFile and DeleteXMLFile methods. By persuading a victim to visit a specially-crafted web

page, a remote attacker could exploit this vulnerability to write malicious data and corrupt arbitrary files or delete files

on the system.. No remedy is available as of September 2007. Users are advised to set the killbit for for the vulnerable

ActiveX control's CLSID A0D43FB0-116B-47AB-80FB-6DCFA92A03E3.