ProgramChecker sasatl.dll ActiveX Control Multiple Overflows

This script is Copyright (C) 2007-2016 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has an ActiveX control that is susceptible to
multiple vulnerabilities.

Description :

The Windows remote host contains the ProgramChecker ActiveX control
from Zenturi, a set of tools for examining programs running on a PC.

The version of this ActiveX control on the remote host reportedly
contains multiple vulnerabilities. A remote attacker may be able to
leverage these issues to execute arbitrary code, run arbitrary
programs, or delete arbitrary files on the remote host subject to the
privileges of the current user.

See also :

http://www.nessus.org/u?a7053afc

Solution :

Disable the use of this ActiveX control from within Internet Explorer
by setting its kill bit.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.4
(CVSS2#E:F/RL:W/RC:ND)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 25344 ()

Bugtraq ID: 24217
24274
24377
24380
24382
24848
25025

CVE ID: CVE-2007-2987
CVE-2007-3076
CVE-2007-3703
CVE-2007-3984

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now