Release DateSep 23, 2008 |
Severityhigh |
ImpactSystem Compromise |
DescriptionThis indicates an attack attempt against a buffer-overflow vulnerability in Ultra Shareware Ultra Office Control.This vulnerability is caused by a boundary error in the Ultra.OfficeControl ActiveX control when handling parameters received by the "HttpUpload()" or "Save()" method. Remote attackers may exploit this to execute arbitrary code. |
Affected ProductsUltra Shareware Ultra Office Control 2.0.2008.501 |
Recommended ActionsUpdate to the latest version:http://www.ultrashareware.com/Ultra-Office-Control.htm. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2008-3879CVE-2008-3878 |
Reference/shttp://www.securityfocus.com/bid/30861 (BugTraq)http://www.securityfocus.com/bid/30863 (BugTraq) |
