Verisign i-NAV VUpdater.Install ActiveX Arbitrary Code Execution

2006-05-10T03:17:37
ID OSVDB:25431
Type osvdb
Reporter OSVDB
Modified 2006-05-10T03:17:37

Description

Vulnerability Description

i-NAV contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered due an input validation error within the "InstallProduct" routine of the "VUpdater.Install" ActiveX control. It is possible that the flaw may allow code execution of arbitrary files within ".CAB" archives resulting in a loss of integrity.

Solution Description

Upgrade to the latest version (2006-05-10) or higher, as it has been reported to fix this vulnerability. Note that this flaw was fixed in the 2006-05-10 release without a change in version number. An upgrade is required as there are no known workarounds.

Short Description

i-NAV contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered due an input validation error within the "InstallProduct" routine of the "VUpdater.Install" ActiveX control. It is possible that the flaw may allow code execution of arbitrary files within ".CAB" archives resulting in a loss of integrity.

References:

Vendor Specific Solution URL: http://www.idnnow.com/index.jsp Security Tracker: 1016059 Secunia Advisory ID:20074 Other Advisory URL: http://www.zerodayinitiative.com/advisories/ZDI-06-014.html Nessus Plugin ID:21336 Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0260.html Keyword: ZDI-06-014 ISS X-Force ID: 26375 FrSIRT Advisory: ADV-2006-1763 CVE-2006-2273 Bugtraq ID: 17939