Advisory: Lenovo/IBM ActiveX buffer overflow
27 Mar 2009
CERT released the advisory for this, which I believe is not being fixed by Lenovo/IBM.
http://www.kb.cert.org/vuls/id/340420
This ActiveX control comes preinstalled on many Lenovo systems, and is also downloaded from the main page of their support site. It’s a nasty stack-based buffer overflow, and enterprises and other consumers should consider how to workaround this.
http://www.kb.cert.org/vuls/id/340420
This ActiveX control comes preinstalled on many Lenovo systems, and is also downloaded from the main page of their support site. It’s a nasty stack-based buffer overflow, and enterprises and other consumers should consider how to workaround this.