TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
808
vulnerable ActiveX control's CLSID C36112BF-2FA3-4694-8603-3B510EA3B465. This signature detects traffic using
the vulnerable CLSID.
Signature ID: 34531
Lycos File Upload ActiveX Control Buffer Overflow
Threat Level: Severe
Bugtraq: 27411
Signature Description: The Lycos File Upload ActiveX is provided by Lycos to ease file uploads to Lycos
services.Lycos FileUploader Module FileUploader.dll version 2.0.0.2 contains a flaw in its handling of its
"HandwriterFilename" property. Setting this property to an overlong value could trigger a buffer overflow
vulnerability. A specially crafted web page that instantiates this control could trigger this buffer overflow, allowing an
attacker to execute arbitrary code with the privileges of the current user.Alternatively user can set the killbit for the
vulnerable ActiveX control's CLSID C36112BF-2FA3-4694-8603-3B510EA3B465. This signature detects attack
traffic using the vulnerable CLSID in UTF encoding.
Signature ID: 34532
Lycos File Upload ActiveX Control Buffer Overflow
Threat Level: Severe
Bugtraq: 27411
Signature Description: The Lycos File Upload ActiveX is provided by Lycos to ease file uploads to Lycos
services.Lycos FileUploader Module FileUploader.dll version 2.0.0.2 contains a flaw in its handling of its
"HandwriterFilename" property. Setting this property to an overlong value could trigger a buffer overflow
vulnerability. A specially crafted web page that instantiates this control could trigger this buffer overflow, allowing an
attacker to execute arbitrary code with the privileges of the current user.Alternatively user can set the killbit for the
vulnerable ActiveX control's CLSID C36112BF-2FA3-4694-8603-3B510EA3B465. This signature detects attack
traffic using the vulnerable PROGID and %uHHHH encoding.
Signature ID: 34533
Lycos File Upload ActiveX Control Buffer Overflow
Threat Level: Warning
Bugtraq: 27411
Signature Description: The Lycos File Upload ActiveX is provided by Lycos to ease file uploads to Lycos
services.Lycos FileUploader Module FileUploader.dll version 2.0.0.2 contains a flaw in its handling of its
"HandwriterFilename" property. Setting this property to an overlong value could trigger a buffer overflow
vulnerability. A specially crafted web page that instantiates this control could trigger this buffer overflow, allowing an
attacker to execute arbitrary code with the privileges of the current user.Alternatively user can set the killbit for the
vulnerable ActiveX control's CLSID C36112BF-2FA3-4694-8603-3B510EA3B465. This signature detects traffic using
the vulnerable PROGID and method.
Signature ID: 34534
Lycos File Upload ActiveX Control Buffer Overflow
Threat Level: Severe
Bugtraq: 27411
Signature Description: The Lycos File Upload ActiveX is provided by Lycos to ease file uploads to Lycos services.
Lycos FileUploader Module FileUploader.dll version 2.0.0.2 contains a flaw in its handling of its HandwriterFilename
property. Setting this property to an overlong value could trigger a buffer overflow vulnerability. A specially crafted
web page that instantiates this control could trigger this buffer overflow, allowing an attacker to execute arbitrary code
with the privileges of the current user.Alternatively user can set the killbit for the vulnerable ActiveX control's CLSID