IDrive Online Backup ActiveX Control < 3.4.1 Arbitrary File Overwrite

High Nessus Plugin ID 55549


The remote Windows host has an ActiveX control that allows overwriting arbitrary files.


The version of IDrive installed on the remote Windows host is earlier than 3.4.1 and includes a third-party ActiveX control named UniBasicPack.UniTextBox from CyberActiveX with an insecure method.
Specifically, the 'SaveToFile()' method can be abused to overwrite arbitrary files.

Note that this control implements IObjectSafety, which reports that it is safe for both initialization and scripting, even though it is not marked as such in the registry itself.


Upgrade to IDrive 3.4.1 or later, which does not include the control.

See Also

Plugin Details

Severity: High

ID: 55549

File Name: idrive_3_4_1.nasl

Version: $Revision: 1.5 $

Type: local

Agent: windows

Family: Windows

Published: 2011/07/11

Modified: 2016/11/19

Dependencies: 13855

Risk Information

Risk Factor: High


Base Score: 9.3

Temporal Score: 7.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:ND

Vulnerability Information

Required KB Items: SMB/Registry/Enumerated

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2011/06/30

Vulnerability Publication Date: 2011/07/06

Reference Information

BID: 48582