tag:blogger.com,1999:blog-52402879299729791822011-04-21T13:36:50.355-07:00blog for http://www.VulnHunt.com ,professional Code Audit Laboratory. include source code audit and binary code audit. if you need Code audit service, feel free to contact us, vulnhunt at gmail.comCode Audit Labhttp://www.blogger.com/profile/05115135831495791532noreply@blogger.comBlogger31100tag:blogger.com,1999:blog-5240287929972979182.post-51016670710247482732007-07-30T20:20:00.000-07:002007-07-30T20:29:41.081-07:00CAL-20070730-1 BlueSkyCat ActiveX Remote Heap Overflow vulnerability<br /><br />BACKGROUND:<br />===========<br /><br /> BlueSkychat is a professional voice and video chat software widely used<br />by large chat websites in china.<br /><br />DESCRIPTION:<br />============<br /><br /> Code Audit Labs Code Audit for BlueSkyCat ActiveX Control and discovered<br />a vulnerability .<br /><br /> Remote exploitation of a buffer overflow in an ActiveX control<br />distributed<br />with Bluesky.cn could allow for the execution of arbitrary code.<br /><br /> When Blueskychat are installed, they register the following ActiveX<br />control on the system:<br /><br /> ProgId: V2.V2Ctrl.1<br /> ClassId: 2EA6D939-4445-43F1-A12B-8CB3DDA8B855<br /> File: v2.ocx<br /><br /> This control contains a buffer overflow in its ConnecttoServer() method.<br /><br /> This is a clent side vulnerability. So the clients of following chat<br />servers which install the affected BlueSkyCat software are affected.<br />bliao http://www.bliao.com<br />qqliao http://www.qqliao.com<br />7liao http://www.7liao.com<br />haoliao http://www.haoliao.net<br />51liao http://chat.51liao.net<br />heshang http://www.heshang.net<br />xicn http://vchat.xicn.net<br />CN104 http://www.cn104.com<br />liao-tian http://www.liao-tian.com<br />aliao http://www.aliao.net<br />kuailiao http://www.kuailiao.com<br />mtliao http://www.mtliao.com<br />pj0427 http://www.pj0427.com<br />uighur http://chat.uighur.cn<br />wmliao http://www.wmliao.com <br /><br />see full report:<br /><a href="http://www.vulnhunt.com/advisories/CAL-20070730-1_BlueSkyCat_v2.ocx_ActiveX_remote_heap_overflow_vulnerability_en.txt"><br />english<br /></a><br /><a href="http://www.vulnhunt.com/advisories/CAL-20070730-1_BlueSkyCat_v2.ocx_ActiveX_remote_heap_overflow_vulnerability.txt"><br />chinese<br /></a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5240287929972979182-5101667071024748273?l=codeaudit.blogspot.com' alt='' /></div>Code Audit Labhttp://www.blogger.com/profile/05115135831495791532noreply@blogger.com1tag:blogger.com,1999:blog-5240287929972979182.post-17278219388529925902007-07-05T19:01:00.000-07:002007-07-05T19:10:20.013-07:00A team named whitecell (http://www.whitecell.org/list.php?id=49 ) discover a new symantec anti-virus Local Privilege Escalation Vulnerability. The vendor is not noticed.<br /><br />Exploitation allows an attacker to execute arbitrary code within the context of the kernel.<br />And exploit has high rate of succeed.<br /><br />Code Audit Labs has confirmed the existence of the vulnerability within last update Symantec AntiVirus 10.0.0.359.<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5240287929972979182-1727821938852992590?l=codeaudit.blogspot.com' alt='' /></div>Code Audit Labhttp://www.blogger.com/profile/05115135831495791532noreply@blogger.com1tag:blogger.com,1999:blog-5240287929972979182.post-35968106681454899872007-06-01T07:26:00.000-07:002007-06-01T07:29:06.300-07:00this is blog of code audit labs, wait for us.<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5240287929972979182-3596810668145489987?l=codeaudit.blogspot.com' alt='' /></div>Code Audit Labhttp://www.blogger.com/profile/05115135831495791532noreply@blogger.com2