Altnet.ADM.ActiveX.Remote.Buffer.Overflow
Description
It indicates a possible exploit of buffer overflow vulnerability in the IsValidFile function in the ADM ActiveX control for Altnet Download Manager that may allow remote attackers to execute arbitrary code via a long bstrFilepath parameter. The vulnerability is caused due to a boundary error within the "IsValidFile()" method in the ADM ActiveX control. This can be exploited to cause a stack-based buffer overflow via e.g. a malicious web site by passing an overly long string to the "bstrFilepath" parameter.
Upgrade to non vulnerable version http://www.altnet.com/install/upgrade.asp
Affected Products
Altnet Download Manager 4.0.0.2 and 4.0.0.4. Other versions may also be affected.
Impact
Compromise of the system.
Recommended Actions
Upgrade to non vulnerable version
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |