SonicWALL SSL-VPN NetExtender NELaunchCtrl ActiveX Control Multiple Overflows
High Nessus Plugin ID 27618
SynopsisThe remote Windows host has an ActiveX control that is affected by buffer overflow vulnerabilities.
DescriptionThe remote host contains the 'NELaunchCtrl' ActiveX control included with the SonicWALL NetExtender VPN client software.
The version of this control installed on the remote host fails to validate arguments to several methods, such as 'AddRouteEntry', 'serverAddress', 'sessionId', 'clientIPLower', etc. If a remote attacker can trick a user on the affected host into visiting a specially crafted web page, the attacker could leverage these issues to overflow a buffer and execute arbitrary code on the host subject to the user's privileges.
SolutionUpgrade to version 220.127.116.11 / 18.104.22.168 or later of the control.