{"vuid":"VU#40813","idnumber":"40813","name":"SetupCtl 1.0 Type Library contains a buffer overflow","keywords":["ActiveX Control","SetupCtl"],"overview":"SetupCtl 1.0 Type Library is a safe-for-scripting ActiveX control that contains a remotely exploitable buffer overflow. This control ships with Microsoft Internet Explorer 4.01 and 5.","clean_desc":"SetupCtl 1.0 Type Library is a safe-for-scripting ActiveX control that contains a remotely exploitable buffer overflow. The INSTALLNOW routine fails to check the buffer size of the DistUnit variable. This control ships with Microsoft Internet Explorer 4.01 and 5. The CLSID for this control is {F72A7B0E-0DD8-11D1-BD6E-00AA00B92AF1}.","impact":"An attacker may exploit the buffer overflow to execute arbitrary commands.","resolution":"Apply the patch from Microsoft Security Bulletin MS99-37.","workarounds":"","sysaffected":"","thanks":"Thanks to Shane Hird for reporting this vulnerability.","author":"This document was written by Jason A Rafail and Cory F. Cohen.","public":["http://www.microsoft.com/technet/treeview/default.asp?url=/technet/Security/Bulletin/MS99-037.asp","http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/fq99-037.asp"],"cveids":["CVE-1999-0702"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2000-08-21T14:35:12Z","publicdate":"1999-09-10T00:00:00Z","datefirstpublished":"2002-10-01T15:42:45Z","dateupdated":"2002-10-11T19:06:22Z","revision":15,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"20","cam_exploitation":"0","cam_internetinfrastructure":"9","cam_population":"10","cam_impact":"15","cam_easeofexploitation":"12","cam_attackeraccessrequired":"18","cam_scorecurrent":"17.6175","cam_scorecurrentwidelyknown":"17.6175","cam_scorecurrentwidelyknownexploited":"29.7675","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":17.6175,"vulnote":null}