Autodesk MapGuide Viewer ActiveX control (MgAxCtrl.dll) denial of service (MapguideviewerActivexDos)

Vuln ID: 61531
Risk Level: Medium risk vulnerability  Medium MapguideviewerActivexDos
Platforms: Autodesk MapGuide Viewer: 6.5
Description:

Autodesk MapGuide Viewer ActiveX control (MgAxCtrl.dll) is vulnerable to a denial of service caused by a buffer overflow. By persuading a victim to visit a specially-crafted Web site that passes an overly long argument to the insecure LayersViewWidth method, a remote attacker could exploit this vulnerability to overflow a buffer to cause the application to crash.

Remedy:

No remedy available as of August 1, 2014.

False Positives:
False Negatives:
Required Permission: Windows login
Additional Information:

References:

Offensive Security Exploit Database [09-1-2010]
Autodesk MapGuide Viewer ActiveX Denial of Service Vulnerability
http://www.exploit-db.com/exploits/14858/

Autodesk Web site
Autodesk - ActiveX Control
http://usa.autodesk.com/adsk/servlet/item?siteID=123112&id=9454821

ISS X-Force
Autodesk MapGuide Viewer ActiveX control (MgAxCtrl.dll) denial of service
http://www.iss.net/security_center/static/61531.php


X-Force Logo
Know Your Risks
Mitre.org CVE Logo
Common Vulnerabilties & Exposures