NASLDB: AOL dnUpdater ActiveX dnu.exe Init() Method Remote Code Execution
General
ID: 61463
Name: AOL dnUpdater ActiveX dnu.exe Init() Method Remote Code Execution
Summary: Checks the version of an ActiveX control
Credits: Tenable Network Security, Inc.
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS Temporal Vector: CVSS2#E:U/RL:OF/RC:C
Port: 139
Family: Windows
Type: Local
Description
The remote host has an install of the AOL dnUpdater ActiveX control
(dnu.exe) prior to version 1.1.25.1. As such, it reportedly does not
properly verify the function pointer passed by the ‘pData’ argument of
the control’s ‘Init()’ method.
A remote attacker could exploit this vulnerability by tricking a user
into opening a specially crafted page that could execute arbitrary
code subject to the user’s privileges.
Note that this control reportedly is included with America Online’s
Toolbar, Desktop, and IM as well as Winamp.
Exploiting
Exploit Available: False
Exploitability Ease: No known exploits are available
Sources
CVE: –
OSVDB: –
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: 2012/06/21
Patch Release: 2012/06/21
Plugin Release: 2012/08/09
Plugin
Version: 1.2
Filename: aol_dnupdater_activex_rce.nasl
Filesize: 4447 bytes
MD5 Hash: 629d6c90796e115d88746842bb284686
Identification: –
Require Keys: SMB/Registry/Enumerated
Dependencies: "smb_hotfixes.nasl"
Copyright: This script is Copyright© 2012 Tenable Network Security, Inc.
- Letzte Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack