Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2010-5194

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2010-5194
Last Modified 05 Sep 2012 12:00:00
Published 31 Aug 2012 05:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2010-5194

Summary

Stack-based buffer overflow in the Image2PDF function in the SCRIBBLE.ScribbleCtrl.1 ActiveX control (ImageViewer2.ocx) in Viscom Image Viewer CP Pro 8.0, Gold 5.5, Gold 6.0, and earlier allows remote attackers to execute arbitrary code via a long strPDFFile parameter.

Vulnerable Systems

Application

  • Viscomsoft Image Viewer Cp Gold Sdk 5.5

  • Viscomsoft Image Viewer Cp Gold Sdk 6.0

  • Viscomsoft Image Viewer Cp Pro Sdk 8.0


References

XF - imageviewer-activex-bo(63642)

OSVDB - 69566

EXPLOIT-DB - 15658

SECUNIA - 42445


Last Updated: 27 May 2016 11:00:26