Lucene search

K
saintSAINT CorporationSAINT:D39899C0BE893FD1C6C19BA571861B58
HistoryJul 11, 2008 - 12:00 a.m.

Microsoft Access Snapshot Viewer file download vulnerability

2008-07-1100:00:00
SAINT Corporation
download.saintcorporation.com
19
microsoft access snapshot viewer
activex control
remote file download
kill bit
security vulnerability

AI Score

6.6

Confidence

Low

EPSS

0.971

Percentile

99.8%

Added: 07/11/2008
CVE: CVE-2008-2463
BID: 30144
OSVDB: 46749

Background

The Snapshot Viewer for Microsoft Access is used to display report snapshots without needing to fully invoke Access. It enables an ActiveX control in **snapview.ocx**.

Problem

The Snapshot Viewer ActiveX control allows remote files to be downloaded to arbitrary locations on the user’s computer. This could allow command execution by a malicious web page which downloads an executable file to the Startup folder. The file would then be executed the next time the user logs in.

Resolution

Set the kill bit on the ActiveX control as described in Microsoft Security Advisory 955179.

References

http://www.kb.cert.org/vuls/id/837785

Limitations

Exploit requires a user to load the exploit page into Internet Explorer. The connection is established after the user logs out and logs in again.

Platforms

Windows

AI Score

6.6

Confidence

Low

EPSS

0.971

Percentile

99.8%