- Jan 24, 2011
- 9,378
RE: Avira AntiVir 10 Service Pack 2 Beta
It seems that the Ask.com toolbars have a serious vulnerability ActiveX Control Buffer Overflown since 2007 and nothing has been done to fix this problem.
IE had some problems with this Ask toolbar and this is why Microsoft has released a "Fix it" solution.
The Ask toolbar will only be installed for the free version users if they want the Webguard feature. In order for them to have Webguard, they must agree to installing the ASK toolbar (named Avira toolbar but it is the Ask toolbar) and they must use Ask as their default search engine.stormgtr said:Does the Ask Toolbar plus WebGuard provide the same level of protection as in the paid versions?
Of course it's limited to toolbar compatible web browsers (correct me if wrong).
It seems that the Ask.com toolbars have a serious vulnerability ActiveX Control Buffer Overflown since 2007 and nothing has been done to fix this problem.
Joey Mengele has discovered a vulnerability in Ask Toolbar, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to a boundary error in the AskJeevesToolBar.SettingsPlugin.1 ActiveX control (askBar.dll) when handling the "ShortFormat" property. This can be exploited to cause a stack-based buffer overflow by assigning an overly long (greater than 500 bytes) string to the affected property.
Successful exploitation allows execution of arbitrary code.
The vulnerability is confirmed in version 4.0.2. Other versions may also be affected.
IE had some problems with this Ask toolbar and this is why Microsoft has released a "Fix it" solution.
Also the this toolbar caused some problems for the Kaspersky users in the past.This problem was caused by Ask Toolbar, which was created by Ask.com.
Ask Toolbar is an Internet Explorer add-on that has caused your browser to stop working.