Signature Detail
Short Name |
HTTP:STC:ACTIVEX:HONEYWELL-TEMA |
|---|---|
Severity |
Medium |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Honeywell EBI TEMA Remote Installer Unsafe ActiveX Control Arbitrary File Download |
Release Date |
2013/01/16 |
Update Number |
2225 |
Supported Platforms |
idp-4.0.110090709+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Honeywell EBI TEMA Remote Installer Unsafe ActiveX Control Arbitrary File Download
This signature detects attempts to use unsafe ActiveX controls in Honeywell EBI TEMA Remote Installer. An attacker can create a malicious Web site containing Web pages with dangerous ActiveX controls, which if accessed by a victim, allows the attacker to gain control of the victim's client browser.
Extended Description
Honeywell EBI is prone to a vulnerability that exists in the TEMA installer and can allow malicious files to be downloaded and saved to arbitrary locations on an affected computer. Successful exploits will allow attackers to download a malicious file onto a victims computer and execute arbitrary code within the context of the application that uses the ActiveX control (typically Internet Explorer). This issue affects the following versions of EBI and corresponding versions of TEMA: EBI R310.1 - TEMA 4.8 EBI R310.1 - TEMA 4.9 EBI R310.1 - TEMA 4.10 EBI R400.2 SP1 - TEMA 5.2 EBI R410.1 - TEMA 5.3.0 EBI R410.2 - TEMA 5.3.1.
Affected Products
- Honeywell EBI R310.1
- Honeywell EBI R400.2 SP1
- Honeywell EBI R410.1
- Honeywell EBI R410.2
- Honeywell TEMA 4.10
- Honeywell TEMA 4.8
- Honeywell TEMA 4.9
- Honeywell TEMA 5.2
- Honeywell TEMA 5.3.0
- Honeywell TEMA 5.3.1
References
- BugTraq: 50078