TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
815
Signature ID: 34561
AOL Radio AmpX ActiveX Control Buffer Overflow
Threat Level: Severe
Industry ID: CVE-CVE-2007-5755
Bugtraq: 26396
Signature Description: AOL Radio is a streaming media service from AOL. Part of its functionality is implemented as
an ActiveX control.AOL Radio activeX control (AmpX ActiveX Control 2.6.1.11) is vulnerable to a buffer overflow
via AppendFileToPlaylist.A specially crafted web page which contain malformed %u encoded exploit data, that
instantiates this control could trigger this buffer overflow, allowing an attacker to execute arbitrary code with the
privileges of the current user. Alternatively user can set the killbit for the vulnerable ActiveX control's CLSID
B49C4597-8721-4789-9250-315DFBD9F525 having progid value WinAmpX.IWinAmpActiveX. Apply the patch for
this vulnerability available from the AOL Web site.
Signature ID: 34562
AOL Radio AmpX ActiveX Control Buffer Overflow
Threat Level: Warning
Industry ID: CVE-CVE-2007-5755 Bugtraq: 26396
Signature Description: AOL Radio is a streaming media service from AOL. Part of its functionality is implemented as
an ActiveX control.AOL Radio activeX control (AmpX ActiveX Control 2.6.1.11) is vulnerable to a buffer overflow
via AppendFileToPlaylist.A specially crafted web page that instantiates this control could trigger this buffer overflow,
allowing an attacker to execute arbitrary code with the privileges of the current user. Alternatively user can set the
killbit for the vulnerable ActiveX control's CLSID B49C4597-8721-4789-9250-315DFBD9F525 having progid value
WinAmpX.IWinAmpActiveX. Apply the patch for this vulnerability available from the AOL Web site.
Signature ID: 34563
AOL Radio AmpX ActiveX Control Buffer Overflow
Threat Level: Severe
Industry ID: CVE-CVE-2007-5755 Bugtraq: 26396
Signature Description: AOL Radio is a streaming media service from AOL. Part of its functionality is implemented as
an ActiveX control.AOL Radio activeX control version 2.6.1.11 is vulnerable to a buffer overflow via
AppendFileToPlaylist. A specially crafted web page that instantiates this control could trigger this buffer overflow,
allowing an attacker to execute arbitrary code with the privileges of the current user.Alternatively user can set the
killbit for the vulnerable ActiveX control's CLSID FA3662C3-B8E8-11D6-A667-0010B556D978.Apply the patch for
this vulnerability (unagi_patch.exe), available from the AOL Web site.
Signature ID: 34564
Microsoft Rich Text Box ActiveX Control Arbitrary File Overwrite
Threat Level: Warning
Industry ID: CVE-CVE-2007-5755 Bugtraq: 26396
Signature Description: The Microsoft Rich Text Box ActiveX control provides a user interface widget for editing Rich
Text Format (RTF) documents.Microsoft rich text box activex control(Microsoft Rich Textbox Control 6.0) is
vulnerable to arbitrary files overwrite via insecure savefile method.A specially crafted web page that instantiated this
control would be able to exploit this vulnerability to create or overwrite arbitrary files with the privileges of the current
user. Alternatively user can set the kill bit for CLSID B617B991-A767-4F05-99BA-AC6FCABB102E
Signature ID: 34566
Microsoft Visual FoxPro arbitrary Command Execution
Threat Level: Warning
Industry ID: CVE-2008-0236
Bugtraq: 27205
Signature Description: Microsoft Visual FoxPro is an integrated development environment for the FoxPro database