Synopsis
The remote Windows host has an ActiveX control that is affected by a buffer overflow vulnerability.
Description
The remote Windows host contains an install of the CrazyTalk ActiveX control, bundled with Dell Webcam software, that reportedly fails to sanitize input to the 'BackImage', 'ScriptName', 'ModelName', and 'SRC' properties, which could be abused to trigger a buffer overflow.
By tricking a user into opening a specially crafted web page, a remote, unauthenticated attacker could execute arbitrary code on the remote host subject to the user's privileges.
Solution
Remove or disable the control as fixes are not available.
Plugin Details
File Name: dell_webcam_crazytalk_activex_backimage_bof.nasl
Agent: windows
Supported Sensors: Nessus Agent, Nessus
Vulnerability Information
CPE: x-cpe:/a:dell:crazytalk
Required KB Items: SMB/Registry/Enumerated, SMB/WindowsVersion
Exploit Ease: Exploits are available
Vulnerability Publication Date: 3/19/2012
Exploitable With
Metasploit (Dell Webcam CrazyTalk ActiveX BackImage Vulnerability)