[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Re: Microsoft MCWNDX.OCX ActiveX buffer overflow

To: full-disclosure@lists.netsys.com
Subject: [Full-Disclosure] Re: Microsoft MCWNDX.OCX ActiveX buffer overflow
From: "Steven M. Christey" <coley@mitre.org>
Date: Thu, 14 Aug 2003 15:57:54 -0400 (EDT)

Matthew Murphy asked:

>Has anyone actually seen this control in-the-wild?  I have Visual C++
>6.0, and Visual Basic 6.0 installed here (full installs, IIRC), and a
>search for "*mcwndx*" on the entire hard drive (and the Visual C++ CD)
>turns up nothing.

It was also observed that "MCWNDX.OCX" isn't on Google either.

The original advisory lists both "MCWNDX.OCX" and "MCIWNDX.OCX," the
latter of which generates a number of hits on Google and is mentioned
in Microsoft KB article Q173352.

So, maybe the correct control name is "MCIWNDX.OCX," although Thor
Larholm said that the "MCWNDX.OCX binary is digitally signed by
Microsoft," so maybe there are two of them.

A surprisingly large percentage of security advisories have
significant typos, inconsistencies, or other mistakes like this, and
few people seem to notice or at least comment on it.

By the way, this is one of the many things that makes vulnerability
databases expensive to maintain (assuming that correctness is a
desirable feature of such databases).

- Steve
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Re: Microsoft MCWNDX.OCX ActiveX buffer overflow
  - From: Georgi Guninski <guninski@guninski.com>

Prev by Date: Re: [Full-Disclosure] New Blaster variant using UDP port 1038?
Next by Date: Re: [Full-Disclosure] Re: Buffer overflow prevention
Prev by thread: RE: [Full-Disclosure] unix entropy source can be used for keystroke timing attacks
Next by thread: Re: [Full-Disclosure] Re: Microsoft MCWNDX.OCX ActiveX buffer overflow
Index(es):
- Date
- Thread