Intrusion PreventionZenturi.ProgramChecker.ActiveX.Fill.Method.Access
Description
This indicates a vulnerability in sasatl.dll in Zenturi ProgramChecker. The vulnerability is caused by a stack based buffer overflow in the "Fill" method. It allows remote attackers to execute arbitrary code by sending a crafted web page invoking this ActiveX control.
Affected Products
Zenturi ProgramChecker ActiveX Control 1.5.531
Impact
System compromise, remote code execution.
Recommended Actions
Currently we are not aware of any official fix for this issue.
As a work around, set the kill bit for the affected ActiveX control.
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2020-12-11 | 16.978 |
| ID | 14878 |
| Created | Aug 10, 2007 |
| Updated | Dec 14, 2020 |
| Risk |
|
| CVE ID | CVE-2007-3703 |
| Exploit Prediction Score | 3.91% |
| Default Action | pass |
| Active | |
| Affected OS | Windows |
| Affected App | Other |