GLWorld.HanGamePluginCN18.ActiveX.Control.Access
Description
This indicates an attempt to exploit a buffer overflow vulnerability in the Lianzong ActiveX control, part of a Chinese gaming platform.
The ActiveX control (CLSID:61F5C358-60FB-4A23-A312-D2B556620F20) is vulnerable to a buffer overflow attack through the "hgs_startgame()" and "hgs_startnotify()" functions. By passing an overly long string, a remote attacker can execute arbitrary code on vulnerable computers.
Affected Products
GLWORLD.2.8.1.2.beta.
Impact
System Compromise: remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to latest version when available, or set the kill bit for the vulnerable ActiveX control.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |