Detections
Analytics

IBM AFP Viewer Plug-in SRC Property Buffer Overflow

high Nessus Plugin ID 33268

Language:

Synopsis

The remote Windows host has a browser plugin that is affected by a buffer overflow vulnerability.

Description

The Windows remote host contains IBM's AFP Viewer plug-in, which allows for viewing AFP (Advanced Function Presentation) documents from a web browser.

The version of the plug-in installed on the remote host reportedly contains a heap-based buffer overflow that can be triggered when processing a 'SRC' property with a string longer than 1023 characters.
If an attacker can trick a user on the affected host into visiting a specially crafted web page, this issue could be leveraged to execute arbitrary code on the affected system subject to the user's privileges.

Solution

Upgrade to AFP Viewer plug-in version 3.4.1.7 or later.

See Also

http://www.nessus.org/u?91153f42

Plugin Details

Severity: High

ID: 33268

File Name: ibm_afp_viewer_src_overflow.nasl

Version: 1.14

Type: local

Agent: windows

Family: Windows

Published: 6/26/2008

Updated: 7/31/2020

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 6.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2008-2880

Vulnerability Information

CPE: cpe:/a:ibm:afp_viewer_plug-in

Required KB Items: SMB/Registry/Enumerated

Exploit Ease: No known exploits are available

Patch Publication Date: 6/4/2008

Vulnerability Publication Date: 6/4/2008

Reference Information

CVE: CVE-2008-2880

BID: 29932

CWE: 119

Secunia: 27995