GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability

ID ZDI-06-019
Type zdi
Reporter Peter Vreugdenhil
Modified 2006-11-09T00:00:00


This vulnerability allows remote attackers to execute arbitrary code on systems that have some versions of the GraceNote CDDBControl ActiveX object installed. There is a buffer overflow in an ActiveXObject registered by several products that use the Gracenote CDDB for CD information lookup. The ActiveX Object is commonly registered as safe and can be accessed from a malicious web site.

The specific flaw exists when a large string is supplied as an option for the instantiated control. An attacker can gain control of the process leading to arbitrary code execution.