GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability

2006-06-27T00:00:00
ID ZDI-06-019
Type zdi
Reporter Peter Vreugdenhil
Modified 2006-11-09T00:00:00

Description

This vulnerability allows remote attackers to execute arbitrary code on systems that have some versions of the GraceNote CDDBControl ActiveX object installed. There is a buffer overflow in an ActiveXObject registered by several products that use the Gracenote CDDB for CD information lookup. The ActiveX Object is commonly registered as safe and can be accessed from a malicious web site.

The specific flaw exists when a large string is supplied as an option for the instantiated control. An attacker can gain control of the process leading to arbitrary code execution.