HTTP: EMC Captiva PixTools Distributed Imaging File Creation
This signature detects attempts to exploit a known vulnerability in EMC Captiva PixTools. An attacker can create a Web site with Web pages containing dangerous ActiveX objects and commands, which if accessed by a victim, allows the attacker to gain control of the victim's client browser.
Extended Description
The EMC Captiva PixTools Distributed Imaging ActiveX control is prone to multiple insecure-method vulnerabilities that affect the PDIControl.PDI.1 ActiveX control (PDIControl.dll). Successfully exploiting these issues allows remote attackers to create or overwrite arbitrary local files, which may lead to arbitrary code execution. PDIControl.dll 2.2.3160.0 is vulnerable; other versions may also be affected.
Affected Products
Emc pixtool_distributed_imaging
References
BugTraq: 36566
Short Name
HTTP:STC:ACTIVEX:EMV-PIXTOOLS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Captiva Creation Distributed EMC File Imaging PixTools bid:36566
Release Date
10/11/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Emc