Popular Chinese Movie Player BoaFeng Vulnerable

[Symantec]

Popular Chinese Movie Player BoaFeng Vulnerable
<p>It has recently been discovered that BoaFeng Storm, a movie player written in Chinese and widely used in Chinese-speaking countries, contains multiple buffer-overflow vulnerabilies, some of which are being actively exploited. The vulnerabilities are related to the ActiveX control used by the software and a vulnerable computer simply needs to browse a Web site, which contains exploit code, to be compromised. Successful exploitation then allows remote execution of arbitrary code in the context of the application using the ActiveX control (in this case Internet Explorer) and allows the attacker to take full control of the compromised computer. Failed exploit attempts may lead to denial-of-service conditions, possibly resulting in the browser crashing.<br />
<br />
The vulnerabilities have been confirmed in version 2.8 and beta version 2.9, although other versions may also be affected, and at the time of this writing the vulnerabilities remain unpatched. Security Focus have also released information (<a href="http://www.securityfocus.com/bid/25601/info">BID 25601</a>) for it that includes a work-around until a vendor-supplied patch is made available. Symantec has added a heuristic detection for the exploit, <a href="http://www.symantec.com/ja/jp/enterprise/security_response/writeup.jsp?docid=2007-091307-4700-99">Bloodhound.Exploit.160</a>.<br />
<br />
ZhenHan Liu is credited with this discovery.</p>
http://www.symantec.com/enterprise/security_response/weblog/2007/09/popular_chinese_movie_player_b.html
http://www.symantec.com/enterprise/security_response/weblog/2007/09/popular_chinese_movie_player_b.html
Thu, 13 Sep 2007 01:47:36 -0800