iEntry 10th Anniversary RSS Archive

IT Management Begins With Security
SecurityProNews > News > Security News > Microsoft Tracking ActiveX Issue
Search:
[ news_security_news ]

Microsoft Tracking ActiveX Issue



David Utter
Staff Writer
2006-09-18

SecurityProNews: Insider Reports Insider Reports RSS Feed


A zero-day vulnerability in the Microsoft DirectAnimation Path ActiveX control could permit remote code execution via Internet Explorer.

The security advisory posted by Microsoft referred to public reports of an issue in Microsoft Internet Explorer on Windows 2000 Service Pack 4, on Windows XP Service Pack 1, and on Windows XP Service Pack 2. Customers who are running Windows Server 2003 and Windows Server 2003 Service Pack 1 in their default configurations, with the Enhanced Security Configuration turned on, are not affected.

The advisory also noted Microsoft is aware of the existence of proof of concept code, but no exploits have been reported. "This vulnerability may allow an attacker to execute code on a user's machine by convincing them to visit a malicious website using Internet Explorer," Christopher Budd wrote at the Microsoft Security Resource Center blog.

Microsoft has not decided whether the patch for this vulnerability will be part of its monthly patch release, or made available out-of-cycle. Considering how Microsoft has not released patches out-of-cycle for more serious flaws, this one does not look like a candidate for that treatment either at this time.

One mitigating factor could prevent this from becoming a more serious issue. The attacker would have to entice a user to click on a link to a malicious site. Unless the user does this, the exploit code can't affect the browser.

The Secunia advisory site rated this exploit as Extremely Critical, its highest severity rating. They described some details of the vulnerability:

The vulnerability is caused due to a memory corruption error in the Microsoft Multimedia Controls ActiveX control (daxctle.ocx) in the "CPathCtl::KeyFrame()" function. This can be exploited by e.g. tricking a user into viewing a malicious HTML document passing specially crafted arguments to the ActiveX control's "KeyFrame()" method.

Successful exploitation allows execution of arbitrary code.

---
Tag:

Add to Del.icio.us | Digg | Yahoo! My Web | Furl

Get all the updates in RSS:




About the Author:
David Utter is a business and technology writer for SecurityProNews and WebProNews.

More news_security_news Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - 1998-2009 All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds