Creative Software AutoUpdate Engine - ActiveX Control Buffer Overflow (Metasploit)

$Id: creativesoftwarecachefolder.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Creative Software AutoUpdate Engine ActiveX Control Buffer Overflow

This module exploits a stack buffer overflow in Creative Software AutoUpdate Engine. When sending an overly long string to the cachefolder property of CTSUEng.ocx an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...

Stack overflow

Stack-based buffer overflow in the Creative Software AutoUpdate Engine ActiveX control in CTSUEng.ocx allows remote attackers to execute arbitrary code via a long CacheFolder property value...

CVE-2008-0955

The CVE-2008-0955 issue is a stack-based buffer overflow in the Creative Labs AutoUpdate Engine ActiveX CTSUEng.ocx , triggered by a long CacheFolder property value. A remote attacker could execute arbitrary code by enticing a user to a malicious page. Connected sources confirm the vulnerability ...