IBM Access Support ActiveX GetXMLValue buffer overflow

Added: 04/01/2009
CVE: CVE-2009-0215
BID: 34228
OSVDB: 52958

Background

The IBM Access Support ActiveX control is used to collect system information. It comes with certain IBM and Lenovo computer systems.

Problem

A buffer overflow vulnerability allows command execution when a user loads a page which invokes the GetXMLValue method with specially crafted parameters.

Resolution

Set the kill bit for class ID 74FFE28D-2378-11D5-990C-006094235084 as described in Microsoft Knowledge Base Article 240797.

References

http://www.kb.cert.org/vuls/id/340420

Limitations

Exploit works on IBM Access Support ActiveX control 3.20.284.0 and requires a user to load the exploit page in Internet Explorer.

Platforms

Windows XP

Back to exploit index