Snapshot Viewer for Microsoft Access ActiveX Control Arbitrary File Download Vulnerability

Symantec has detected evidence that this issue is being actively exploited in the wild. Active exploits of this issue are known to be attacking both Chinese and English versions of Microsoft Windows.

Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.

UPDATE: Since an exploit for this issue is now part of a variant of the Neosploit exploit kit, we will likely see widespread exploit attempts of this vulnerability.

UPDATE (August 1, 2008): Symantec has observed in-the-wild attacks leveraging a new vector of attack for this issue. The newly discovered vector greatly increases the severity of the flaw because users who do not have the Snapshot Viewer control on their system can be forced to download the control without interaction and can then be exploited.

The following exploit code is available:


 

Privacy Statement
Copyright 2010, SecurityFocus