Published:2016/04/04 Last Updated:2016/04/06
JVN#41875357
ActiveX control for EVA Animator vulnerable to buffer overflow
Overview
ActiveX control for EVA Animator provided by Sharp Corporation contains a buffer overflow vulnerability.
Products Affected
- ActiveX control for EVA Animator
Description
ActiveX control for EVA Animator provided by Sharp Corporation contains a buffer overflow vulnerability.
Impact
If a user views a malicious page, arbitrary code may be executed.
Solution
Remove ActiveX control for EVA Animator
The EVA Animator service ended and the related website for its service including the page to download the ActiveX control was closed in February 2016. Remove ActiveX control for EVA Animator.
Vendor Status
| Vendor | Status | Last Update | Vendor Notes |
|---|---|---|---|
| Sharp Corporation | Vulnerable | 2016/04/04 | Sharp Corporation website |
References
JPCERT/CC Addendum
Vulnerability Analysis by JPCERT/CC
CVSS v3
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Base Score:
6.3
| Attack Vector(AV) | Physical (P) | Local (L) | Adjacent (A) | Network (N) |
|---|---|---|---|---|
| Attack Complexity(AC) | High (H) | Low (L) | ||
| Privileges Required(PR) | High (H) | Low (L) | None (N) | |
| User Interaction(UI) | Required (R) | None (N) | ||
| Scope(S) | Unchanged (U) | Changed (C) | ||
| Confidentiality Impact(C) | None (N) | Low (L) | High (H) | |
| Integrity Impact(I) | None (N) | Low (L) | High (H) | |
| Availability Impact(A) | None (N) | Low (L) | High (H) |
CVSS v2
AV:N/AC:M/Au:N/C:P/I:P/A:P
Base Score:
6.8
| Access Vector(AV) | Local (L) | Adjacent Network (A) | Network (N) |
|---|---|---|---|
| Access Complexity(AC) | High (H) | Medium (M) | Low (L) |
| Authentication(Au) | Multiple (M) | Single (S) | None (N) |
| Confidentiality Impact(C) | None (N) | Partial (P) | Complete (C) |
| Integrity Impact(I) | None (N) | Partial (P) | Complete (C) |
| Availability Impact(A) | None (N) | Partial (P) | Complete (C) |
Credit
Daiki Fukumori of Cyber Defense Institute, Inc. reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
Other Information
| JPCERT Alert | |
| JPCERT Reports | |
| CERT Advisory | |
| CPNI Advisory | |
| TRnotes | |
| CVE |
CVE-2016-1176 |
| JVN iPedia |
JVNDB-2016-000038 |
Update History
- 2016/04/06
- Corrected product name