CVE-2007-6189

BitDefender Online Anti-Virus Scanner 8.0 - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-6189. PoCs published by Nphinity.

AI-analyzed exploit summary This exploit targets a memory corruption vulnerability in BitDefender OScan8.ocx/Oscan81.ocx ActiveX controls. It uses a heap spray technique to achieve arbitrary code execution, launching the calculator as a proof of concept.

Description

A certain ActiveX control in (1) OScan8.ocx and (2) Oscan81.ocx in BitDefender Online Anti-Virus Scanner 8.0 allows remote attackers to execute arbitrary code via a long argument to the InitX method that begins with a "%%" sequence, which is misinterpreted as a Unicode string and decoded twice, leading to improper memory allocation and a heap-based buffer overflow.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nphinity · htmlremotewindows

https://www.exploit-db.com/exploits/4663

View Code ZIP pw:eip

This exploit targets a memory corruption vulnerability in BitDefender OScan8.ocx/Oscan81.ocx ActiveX controls. It uses a heap spray technique to achieve arbitrary code execution, launching the calculator as a proof of concept.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Racy

Target: BitDefender OScan8.ocx / Oscan81.ocx ActiveX controls

No auth needed

Prerequisites: Victim must visit a malicious webpage using Internet Explorer with the vulnerable ActiveX control installed

MITRE ATT&CK