Macrovision InstallShield InstallScript One-Click Install ActiveX Arbitrary Code Execution
High Nessus Plugin ID 31724
SynopsisThe remote Windows host has an ActiveX control that is affected by a buffer overflow vulnerability.
DescriptionThe remote host contains the InstallScript One-Click Install ActiveX control distributed with Macrovision's InstallShield.
The installed version of that control reportedly allows an attacker to download arbitrary DLL files from a website to be executed as part of a web install. If a remote attacker can trick a user on the affected host into visiting a specially crafted web page, this issue could be leveraged to execute arbitrary code on the affected host subject to the user's privileges.
SolutionUpgrade to InstallShield 12 Service Pack 2 if necessary, apply the appropriate hotfix, and then rebuild and update any HTML files as described in the vendor's advisory.