Intrusion Prevention

StudioLine.Photo.Basic.NMSDVDXU.dll.ActiveX.File.Overwrite

Description

This indicates an attack attempt to exploit a File Overwrite vulnerability in StudioLine Photo Basic.
The vulnerability is located in the "NMSDVDXU.dll" ActiveX control. Through misuse of the "Control" property, a remote attacker may be able to overwrite arbitrary files within the context of the user.

Affected Products

StudioLine Photo Basic 3.70.34.0

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

The vendor is in the process of eliminating the usage of the affected ActiveX Control in the affected product. In the meantime, please disable this ActiveX Control by setting its kill bit, by the method shown on the website:
http://support.microsoft.com/kb/240797