Peaches Posted July 13, 2010 Report Share Posted July 13, 2010 <h4></h4>Secunia Advisory SA40543Image22 ActiveX Control "DrawIcon()" Buffer Overflow Vulnerability Highly critical DescriptionA vulnerability has been discovered in Image22 ActiveX control, which can be exploited by malicious people to compromise a user's system.The vulnerability is caused due to a boundary error in the handling of the "DrawIcon()" method when processing the file extension argument and can be exploited to cause a stack-based buffer overflow. Successful exploitation allows execution of arbitrary code. The vulnerability is confirmed in version 1.1.1.0. Other versions may also be affected. SolutionSet the kill-bit for the ActiveX control. http://secunia.com/advisories/40543/ Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.