CR64Loader.ActiveX.Object.Access
Description
The Retro64 CR64Loader ActiveX control is prone to a remote buffer-overflow vulnerability that allow a remote attacker to cause a denial of service or execute arbitrary commandby tricking a user into visiting a specially crafted web page.
The vulnerable control was distributed in the past by retro64.com and miniclip.com, but is reportedly no longer in use. Users who have previously installed this software may be vulnerable to this issue.
Affected Products
Retro64 / Miniclip CR64Loader ActiveX Control
Impact
Gain Access
Recommended Actions
The CR64Loader ActiveX control can be disabled by setting a kill bit for CLSID {288C5F13-7E52-4ADA-A32E-F5BF9D125F99} :
http://support.microsoft.com/kb/240797
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |