ER Mapper NCSView ActiveX Multiple Buffer Overflows

This script is Copyright (C) 2007-2014 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has an ActiveX control that is affected by
multiple buffer overflow vulnerabilities.

Description :

The remote host contains the 'NCSView' ActiveX control, distributed as
part of the ER Mapper package and used to view maps in Internet
Explorer.

The version of this control installed on the remote host reportedly
contains multiple stack-based buffer overflows. If an attacker can
trick a user on the affected host into visiting a specially crafted
web page, this issue could be leveraged to execute arbitrary code on
the host subject to the user's privileges.

Solution :

Either disable the use of this ActiveX control from within Internet
Explorer by setting its kill bit or upgrade to ER Mapper version 8.1
(version 3.4.0.242 of the NCSView control itself) or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.9
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 26014 (er_mapper_ncsview_activex_overflows.nasl)

Bugtraq ID: 25584

CVE ID: CVE-2007-4470

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now