Technical Description

A vulnerability has been identified in WebEx ActiveX Control, which could be exploited by remote attackers to take complete control of an affected system. This flaw is due to input validation errors when handling the "GpcUrlRoot" and "GpcIniFileName" parameters, which could be exploited by remote attackers to download and execute malicious components by tricking a user into visiting a specially crafted web page.

Note : Various buffer overflow errors have also been identified in certain versions of the ActiveX control, which could be exploited by malicious web sites to execute arbitrary commands.

Affected Products

WebEx ActiveX Control versions prior to 2.1.0.0

Solution

Upgrade to version 2.1.0.0 :
http://www.webex.com/lp/security/page2.html

References

http://www.vupen.com/english/advisories/2006/2688
http://www.frsirt.com/english/reference/15305
http://xforce.iss.net/xforce/alerts/id/226
http://www.webex.com/lp/security/ActiveAdv.html?TrackID=123456

Credits

Vulnerabilities reported by David Dewey, Mark Dowd (ISS X-Force), and Zero Day Initiative.

ChangeLog

2006-07-06 : Initial release
2006-07-07 : Updated Advisory

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.