Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2009 Greenbone Networks GmbHOPENVAS:800530
HistoryMar 12, 2009 - 12:00 a.m.

SopCast SopCore ActiveX Control DoS Vulnerability (Windows)

2009-03-1200:00:00
Copyright (C) 2009 Greenbone Networks GmbH
plugins.openvas.org
8

0.015 Low

EPSS

Percentile

86.8%

JSON

This host is installed with SopCast SopCore ActiveX and is prone
to denial of service vulnerability.

###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_sopcast_sopcore_activex_ctrl_dos_vuln_win.nasl 5369 2017-02-20 14:48:07Z cfi $
#
# SopCast SopCore ActiveX Control DoS Vulnerability (Windows)
#
# Authors:
# Nikita MR <[email protected]>
#
# Copyright:
# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

tag_solution = "Upgrade to SopCast version 3.2.9 or later
  For updates refer to http://www.sopcast.org/

  Workaround:
  Set the killbit for the CLSID {8FEFF364-6A5F-4966-A917-A3AC28411659}
  http://support.microsoft.com/kb/240797";

tag_impact = "Attacker may exploit this issue to execute arbitrary script code and may
  crash the browser.
  Impact Level: Application";
tag_affected = "SopCast sopocx.ocx version 3.0.3.501 on Windows.";
tag_insight = "Remote arbitrary programs can be executed via executable file name in the
  SetExternalPlayer function of the sopocx.ocx file and persuading a victim
  to visit a specially-crafted Web page.";
tag_summary = "This host is installed with SopCast SopCore ActiveX and is prone
  to denial of service vulnerability.";

if(description)
{
  script_id(800530);
  script_version("$Revision: 5369 $");
  script_tag(name:"last_modification", value:"$Date: 2017-02-20 15:48:07 +0100 (Mon, 20 Feb 2017) $");
  script_tag(name:"creation_date", value:"2009-03-12 08:39:03 +0100 (Thu, 12 Mar 2009)");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_cve_id("CVE-2009-0811");
  script_bugtraq_id(33920);
  script_name("SopCast SopCore ActiveX Control DoS Vulnerability (Windows)");

  script_xref(name : "URL" , value : "http://milw0rm.com/exploits/8143");
  script_xref(name : "URL" , value : "http://xforce.iss.net/xforce/xfdb/48955");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2009 Greenbone Networks GmbH");
  script_family("Denial of Service");
  script_dependencies("secpod_reg_enum.nasl");
  script_mandatory_keys("SMB/WindowsVersion");
  script_require_ports(139, 445);
  script_tag(name : "impact" , value : tag_impact);
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name : "summary" , value : tag_summary);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name:"qod_type", value:"registry");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("smb_nt.inc");
include("version_func.inc");
include("secpod_activex.inc");
include("secpod_smb_func.inc");

sopName = registry_get_sz(key:"SOFTWARE\Microsoft\Windows\CurrentVersion" +
                                  "\Uninstall\SopCast", item:"DisplayName");
if("SopCast" >< sopName)
{
  sopPath = registry_get_sz(key:"SOFTWARE\Microsoft\Windows\CurrentVersion" +
                                "\Uninstall\SopCast", item:"DisplayIcon");
  if(!sopPath){
    exit(0);
  }

  sopPath = sopPath - "SopCast.exe" + "sopocx.ocx";
  share = ereg_replace(pattern:"([A-Z]):.*", replace:"\1$", string:sopPath);
  file = ereg_replace(pattern:"[A-Z]:(.*)", replace:"\1", string:sopPath);
  sopocxVer = GetVer(share:share, file:file);

  # Check for version of sopocx.ocx
  if(sopocxVer != NULL &&
     version_is_equal(version:sopocxVer, test_version:"3.0.3.501"))
  {
    if(is_killbit_set(clsid:"{8FEFF364-6A5F-4966-A917-A3AC28411659}") == 0){
      security_message(0);
    }
  }
}

Related

openvas 1
cvelist 1
cve 1
prion 1
nvd 1
openvas
openvas
SopCast SopCore ActiveX Control DoS Vulnerability - Windows
2009-03-12 00:00:00
cvelist
cvelist
CVE-2009-0811
2009-03-04 17:00:00
cve
cve
CVE-2009-0811
2009-03-04 17:30:02
prion
prion
Design/Logic Flaw
2009-03-04 17:30:00
nvd
nvd
CVE-2009-0811
2009-03-04 17:30:02

0.015 Low

EPSS

Percentile

86.8%

JSON
Related for OPENVAS:800530
openvas1cvelist1cve1prion1nvd1