Intrusion Prevention

AOL.IWinAmpActiveX.Class.ConvertFile.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Buffer Overflow vulnerability in the AOL IWinAmpActiveX Class.
This vulnerability, which is located in the "AmpX.dll" ActiveX control, can be exploited through misuse of the vulnerable method "ConvertFile". An attacker can trick an unsuspecting user into visiting a malicious webpage and execute arbitrary code within the context of the application.

Affected Products

AmpX.dll 2.4.0.6

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Set the kill bit for the affected ActiveX control.