Buffer overflow in Viscomsoft Image_viewer_cp_gold_sdk

CVE-2010-5194

Stack-based buffer overflow in the Image2PDF function in the SCRIBBLE.ScribbleCtrl.1 ActiveX control (ImageViewer2.ocx) in Viscom Image Viewer CP Pro 8.0, Gold 5.5, Gold 6.0, and earlier allows remote attackers to execute arbitrary code vi…

Vulnerability class: Buffer Overflow

EPSS: 0.224 (95.9th percentile) — read the EPSS interpretation.

Affected products

Viscomsoft Image_viewer_cp_gold_sdk — versions 5.5, 6.0
Viscomsoft Image_viewer_cp_pro_sdk — versions 8.0
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

69566 (x_refsource_OSVDB, vdb-entry)
imageviewer-activex-bo(63642) (vdb-entry, x_refsource_XF)
42445 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
15658 (Exploit, exploit, x_refsource_EXPLOIT-DB)