Intrusion Prevention

Symantec.ConsoleUtilities.ActiveX.Control.Code.Execution

Description

This indicates an attack attempt against a Buffer Overflow vulnerability in Symantec's ConsoleUtilities ActiveX Control.
The vulnerability can be exploited by sending an overly long string to the "BrowseAndSaveFile()" method.

Affected Products

AeXNSConsoleUtilities.dll Version 6.0.0.1846

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are unaware of any vendor supplied patches or updates.

CVE References

CVE-2009-3031