| Name | Electronic.Arts.SnoopyCtrl.NPSnpy.Dll.ActiveX.Access |
| Release Date | Nov 03, 2009 |
| Severity | Critical |
| Impact | System Compromise: Remote attackers can gain control of vulnerable systems. |
| Description | This indicates an attempt to exploit a code execution vulnerability in Electronic Arts SnoopyCtrl.
The vulnerability is located in the "NPSnpy.dll" ActiveX control through misuse of "CheckRequirements" method. It may allow remote attackers to execute arbitrary code in vulnerable systems. |
| Affected Products | Electronic Arts Inc. SnoopyCtrl ActiveX 0 |
| Recommended Actions | Set the kill bit for the following CLSID:
{525A15D0-4938-11D4-94C7-0050DA20189B} |
| Common Vulnerabilities and Exposures (CVE) | http://cve.mitre.org/cgi-bin/cvename.cgi?name=2007-4466
|
| Reference/s | http://www.securityfocus.com/bid/25970 (BugTraq)
http://www.kb.cert.org/vuls/id/179281
|