Name:
Ultra.Office.Vulnerable.Method.ActiveX.Control.Acc
Released Date:
Sep 23 2008
Severity:
high
CVE:
2008-3879
2008-3878
Bugtraq:
30863
30861

FortiGuard Center > Vulnerability Encyclopedia


In-Depth Analysis

Description
This indicates an attack attempt against a buffer-overflow vulnerability in Ultra Shareware Ultra Office Control.

This vulnerability is caused by a boundary error in the Ultra.OfficeControl ActiveX control when handling parameters received by the "HttpUpload()" or "Save()" method. Remote attackers may exploit this to execute arbitrary code.
 
Impact
System Compromise
 
Affected Products
Ultra Shareware Ultra Office Control 2.0.2008.501
Aliases
References
http://www.securityfocus.com/bid/30863
http://www.securityfocus.com/bid/30861
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2008-3879
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2008-3878
Recommended Actions
Update to the latest version:
http://www.ultrashareware.com/Ultra-Office-Control.htm.

 
 
SITE MAP  |  LEGAL NOTICES

      © 2003 FORTINET INC. ALL RIGHTS RESERVED