BitDefender.Online.ActiveX.Buffer.Overflow

description-logoDescription

This indicates an attempt to exploit a buffer-overflow vulnerability in OScan8.ocx and Oscan81.ocx, which are included by default in BitDefender's Online Anti-Virus Scanner.
The vulnerability is caused by an error that occurs when the vulnerable software handles a malicious "InitX" property. It allows a remote attacker to execute arbitrary code via a crafted web page.

affected-products-logoAffected Products

BitDefender Online Anti-Virus Scanner 8.0 released on or prior to May 24th 2006.

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the patch available from the web site:
http://www.bitdefender.com/scan8/ie.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)