Intrusion Prevention

Altnet.ADM.ActiveX.Remote.Buffer.Overflow

Description

It indicates a possible exploit of buffer overflow vulnerability in the IsValidFile function in the ADM ActiveX control for Altnet Download Manager that may allow remote attackers to execute arbitrary code via a long bstrFilepath parameter. The vulnerability is caused due to a boundary error within the "IsValidFile()" method in the ADM ActiveX control. This can be exploited to cause a stack-based buffer overflow via e.g. a malicious web site by passing an overly long string to the "bstrFilepath" parameter.
Upgrade to non vulnerable version http://www.altnet.com/install/upgrade.asp

Affected Products

Altnet Download Manager 4.0.0.2 and 4.0.0.4. Other versions may also be affected.

Impact

Compromise of the system.

Recommended Actions

Upgrade to non vulnerable version http://www.altnet.com/install/upgrade.asp

CVE References

CVE-2004-2433