Intrusion Prevention

Creative.Software.Autoupdate.ActiveX.Access

Description

This indicates an attempt to exploit a buffer-overflow vulnerability in the Creative Software AutoUpdate OCX Module.
This vulnerability is caused by an error in the "CTSUEng.ocx" ActiveX Control when handling malformed data. A remote attacker may exploit this to execute arbitrary code.

Affected Products

Creative Labs, AutoUpdate ActiveX control

Impact

System Compromise

Recommended Actions

Currently, we are not aware of any vendor-supplied patch for this issue.

CVE References

CVE-2008-0955