HTTP: Backweb LiteInstactivator ActiveX Exploit
This signature detects attempts to exploit a known vulnerability in Backweb LiteInstactivator. An attacker can create a malicious Web site containing dangerous ActiveX calls, which if accessed by a victim, allows the attacker to gain control of the victim's client browser.
Extended Description
BackWeb is prone to a remote buffer-overflow vulnerability because of a flaw in one of its ActiveX control components. The issue occurs because the component fails to perform adequate boundary checks on user-supplied input before copying it to a buffer. An attacker can exploit this issue to run arbitrary attacker-supplied code in the context of the currently logged-in user. Failed exploits attempts will trigger denial-of-service conditions. This issue affects versions prior to BackWeb 8.1.1.87.
Affected Products
Logitech logitech_desktop_manager
Short Name
HTTP:STC:ACTIVEX:BACKWEB-LIA
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
ActiveX Backweb CVE-2008-0956 Exploit LiteInstactivator
Release Date
06/03/2008
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Backweb
Logitech
CVSS Score
9.3