Name:
GLWorld.HanGamePluginCN18.ActiveX.Control.Access
Released Date:
Feb 6 2008
Severity:
critical
CVE:
2008-0647
Bugtraq:
27626

FortiGuard Center > Vulnerability Encyclopedia


In-Depth Analysis

Description
This indicates an attempt to exploit a buffer overflow vulnerability in the Lianzong ActiveX control, part of a Chinese gaming platform.

The ActiveX control (CLSID:61F5C358-60FB-4A23-A312-D2B556620F20) is vulnerable to a buffer overflow attack through the "hgs_startgame()" and "hgs_startnotify()" functions. By passing an overly long string, a remote attacker can execute arbitrary code on vulnerable computers.
 
Impact
System Compromise: remote attackers can gain control of vulnerable systems.
 
Affected Products
GLWORLD.2.8.1.2.beta.
Aliases
GLWorld.HanGamePluginCN18.ActiveX.Control.Access
References
http://www.securityfocus.com/bid/27626
http://www.frsirt.com/english/advisories/2008/0427
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2008-0647
http://milw0rm.org/exploits/5153
http://blog.trendmicro.com/targeted-attack-against-chinese-gamers-in-new-zero-day-exploit/
http://www.symantec.com/enterprise/security_response/weblog/2008/02/zeroday_exploit_for_lianzong_g.html
Recommended Actions
Upgrade to latest version when available, or set the kill bit for the vulnerable ActiveX control.

 
 
SITE MAP  |  LEGAL NOTICES

      © 2003 FORTINET INC. ALL RIGHTS RESERVED