Release DateSep 23, 2008 |
Severitylow |
ImpactSystem Compromise:Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attack attempt to exploit a vulnerability in UUSee 2008.The vulnerability is caused by an error in the "Update" method within the "UUUPGRADE.UUUpgradeCtrl.1" ActiveX control. It allows remote attackers to overwrite sensitive files with malicious data that will compromise the affected computer. |
Affected ProductsUUSee 2008 and earlier versions |
Recommended ActionsThe vendor has not released a patch as of this writing. Please disable this ActiveX Control if not needed. |
Coverage IPS
VCM |
Reference/shttp://www.symantec.com/business/security_response/attacksignatures/detail.jsp?asid=23023http://www.securityfocus.com/bid/29963 (BugTraq) |
