InstallShield InstallFromTheWeb ActiveX Control Multiple Overflows
High Nessus Plugin ID 24700
SynopsisThe remote Windows host has an ActiveX control that is affected by multiple buffer overflow vulnerabilities.
DescriptionInstallFromTheWeb (IFTW), a web-enabled software installation product from InstallShield, is installed on the remote host.
The version of InstallFromTheWeb on the remote host includes an ActiveX control that is reportedly affected by multiple and, as yet, unspecified buffer overflow vulnerabilities. If an attacker can trick a user on the affected host into visiting a specially crafted web page, he can leverage these issues to execute arbitrary code on the host subject to the user's privileges.
SolutionDisable InstallFromTheWeb's ActiveX control as described in the US-CERT advisory referenced above.