Signature Detail
Short Name |
HTTP:STC:ACTIVEX:RWSO |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
OL2005.dll ActiveX CLSID Rising |
Release Date |
2008/03/06 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Rising Web Scan Object OL2005.dll ActiveX Remote Code Execution
This signature detects attempts to exploit a known vulnerability in Rising Web Scan ActiveX Control. An attacker can create a malicious Web site containing Web pages with dangerous ActiveX calls, which if accessed by a victim, allows the attacker to gain control of the victim's client browser.
Extended Description
Rising Web Scan Object 'OL2005.dll' ActiveX control is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code on a victim's computer in the context of the vulnerable application using the ActiveX control (typically Internet Explorer). This issue affects Rising Web Scan Object 'OL2005.dll' 18.0.0.7; other versions may also be affected.
Affected Products
- Rising Antivirus International Rising Web Scan Object 'OL2005.dll' 18.0.0 7
References
- BugTraq: 27997
- URL: http://online.rising.com.cn/free/rav.htm