Close
  • Latest News
  • Cybersecurity
  • Big Data and Analytics
  • Cloud
  • Mobile
  • Networking
  • Storage
  • Applications
  • IT Management
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Menu
Search
  • Latest News
  • Cybersecurity
  • Big Data and Analytics
  • Cloud
  • Mobile
  • Networking
  • Storage
  • Applications
  • IT Management
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity
    • IT Management
    • PC Hardware

    Microsoft ActiveX Security Bugs ‘Highly Critical’

    By
    Brian Prince
    -
    December 23, 2010
    Share
    Facebook
    Twitter
    Linkedin

      Microsoft counted 106 security bulletins for 2010 when it released its final Patch Tuesday update for the year. But with 2010 now coming to a close, additional bugs are popping up – this time in an ActiveX control.

      According to researchers at Secunia, “highly critical” vulnerabilities have been found impacting the Microsoft WMI Administrative Tools WMI Object Viewer ActiveX Control.

      “Two vulnerabilities have been discovered in Microsoft WMI Administrative Tools, which can be exploited by malicious people to compromise a user’s system,” reported Secunia. “The vulnerabilities are caused due to the “AddContextRef()” and “ReleaseContext()” methods in the WMI Object Viewer Control (WBEM.SingleViewCtrl.1) using a value passed in the “lCtxHandle” parameter as an object pointer.”

      The vulnerabilities are confirmed in version 1.1 (WBEMSingleView.ocx 1.50.1131.0), though other versions may be affected as well, Secunia noted. A successful exploit would enable an attacker to execute arbitrary code, the firm warned.

      Dave Forstrom, director of the Trustworthy Computing at Microsoft, said there have been no reports of attacks related to the issue, and the company is investigating the matter.

      “Once we’re done investigating, we will take appropriate actions to help protect customers,” he told eWEEK.

      Historically, ActiveX bugs have been big targets, noted Andrew Storms, director of security operations at nCircle.

      “We haven’t seen a good ActiveX scare in some time so time isn’t on our side, but it’s still too early to make a call on how things will shape up with this bug,” Storms said.

      Besides the ActiveX bugs, the company is also investigating a denial-of-service issue impacting IIS FTP 7.5, which ships with Windows 7 and Windows Server 2008 R2. Proof of concept exploit code has already been made public, according to Nazim Lala, IIS security program manager at Microsoft.

      “First, this is a Denial of Service vulnerability and remote code execution is unlikely,” Lala blogged. “The vulnerability occurs when the FTP server attempts to encode Telnet IAC (Interpret As Command) character in the FTP response. The IAC character, which is represented as decimal 255 (Hex FF) in the response, needs to be encoded by the addition of another decimal 255 character in the FTP response where we find the presence of the IAC character.”

      Due to an error in this processing, it is possible to get into a state where an attacker can overwrite part of the response with a string of 0xFFs past the end of the heap buffer, Lala explained. The end result is a heap buffer overrun.

      “In that situation, the only data that a malicious client controls in this overrun is the number of bytes by which the buffer is overrun,” blogged Lala. “It cannot control the data that is overwritten…Also, the malicious client does not control the addresses where data is overridden, and the data is always overridden in a sequential manner. The FTP service 7.5 is also protected by Data Execution Prevention (DEP).”

      “We’ll continue to investigate this issue and, if necessary, we-ll take appropriate action to help protect customers,” Lala wrote. “This may include providing a security update through the monthly release process or additional guidance to help customers protect themselves.”

      Dec. 22, Microsoft issued an advisory on a previously reported vulnerability in Internet Explorer.

      Avatar
      Brian Prince

      MOST POPULAR ARTICLES

      Android

      Samsung Galaxy XCover Pro: Durability for Tough...

      Chris Preimesberger - December 5, 2020 0
      Have you ever dropped your phone, winced and felt the pain as it hit the sidewalk? Either the screen splintered like a windshield being...
      Read more
      Cloud

      Why Data Security Will Face Even Harsher...

      Chris Preimesberger - December 1, 2020 0
      Who would know more about details of the hacking process than an actual former career hacker? And who wants to understand all they can...
      Read more
      Cybersecurity

      How Veritas Is Shining a Light Into...

      eWEEK EDITORS - September 25, 2020 0
      Protecting data has always been one of the most important tasks in all of IT, yet as more companies become data companies at the...
      Read more
      Big Data and Analytics

      How NVIDIA A100 Station Brings Data Center...

      Zeus Kerravala - November 18, 2020 0
      There’s little debate that graphics processor unit manufacturer NVIDIA is the de facto standard when it comes to providing silicon to power machine learning...
      Read more
      Apple

      Why iPhone 12 Pro Makes Sense for...

      Wayne Rash - November 26, 2020 0
      If you’ve been watching the Apple commercials for the past three weeks, you already know what the company thinks will happen if you buy...
      Read more
      eWeek


      Contact Us | About | Sitemap

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Property of TechnologyAdvice.
      Terms of Service | Privacy Notice | Advertise | California - Do Not Sell My Information

      © 2021 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×