CVE-2008-2745
published 2008-06-17CVE-2008-2745: Stack-based buffer overflow in BiAnno ActiveX Control (BiAnno.ocx) in Black Ice Software Annotation Plugin 10.95 allows remote attackers to execute arbitrary…
PriorityP351critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
11.37%
95.4th percentile
Stack-based buffer overflow in BiAnno ActiveX Control (BiAnno.ocx) in Black Ice Software Annotation Plugin 10.95 allows remote attackers to execute arbitrary code via a long parameter to the AnnoSaveToTiff method.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| black_ice | annotation_software | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Black Ice Software Annotation Plugin - 'BiAnno.ocx' Remote Buffer Overflow (2)
exploitdb·2008-06-10
CVE-2008-2745 Black Ice Software Annotation Plugin - 'BiAnno.ocx' Remote Buffer Overflow (2)
Black Ice Software Annotation Plugin - 'BiAnno.ocx' Remote Buffer Overflow (2)
---
Black Ice Software Annotation Plugin (BiAnno.ocx) Remote Buffer Overflow (2)
url: http://www.blackice.com
File : BiAnno.ocx
Ver. : 10.9.5.0
CLSID: {B27DC3CE-FF81-4DCF-9B80-0E69D61BED2A}
Mark.: RegKey Safe for Script: True
RegKey Safe for Init: True
Implements IObjectSafety: False
Author: shinnai
mail: shinnai[at]autistici[dot]org
site: http://shinnai.altervista.org
This was written for educational purpose. Use it at your own risk.
Author will be not responsible for any damage.
Tested on Windows XP Professional SP2 all patched, with Internet Explorer 7
In memory of rgod
Sub tryMe
buff = String(524, "A")
get_EIP = unescape("%EB%BA%3F%7E") 'call ESP from user32.dll
nop = String(9, unescape("%90"))
Exploit-DB
Black Ice Software Annotation Plugin - 'BiAnno.ocx' Remote Buffer Overflow
exploitdb·2008-06-10
CVE-2008-2745 Black Ice Software Annotation Plugin - 'BiAnno.ocx' Remote Buffer Overflow
Black Ice Software Annotation Plugin - 'BiAnno.ocx' Remote Buffer Overflow
---
Black Ice Software Annotation Plugin (BiAnno.ocx) Remote Buffer Overflow
url: http://www.blackice.com
File : BiAnno.ocx
Ver. : 10.9.5.0
CLSID: {B27DC3CE-FF81-4DCF-9B80-0E69D61BED2A}
Mark.: RegKey Safe for Script: True
RegKey Safe for Init: True
Implements IObjectSafety: False
Author: shinnai
mail: shinnai[at]autistici[dot]org
site: http://shinnai.altervista.org
This was written for educational purpose. Use it at your own risk.
Author will be not responsible for any damage.
Windows XP Professional SP3 fully patched, with Internet Explorer 7
Windows 2k Professional SP4 fully patched, with Internet Explorer 6
In memory of rgod
var shellcode = unescape( "%uE860%u0000%u0000%u815D%u06ED%u0000%u8A00%u1285%u00
http://secunia.com/advisories/30603http://www.securityfocus.com/bid/29635http://www.vupen.com/english/advisories/2008/1795/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/42982https://www.exploit-db.com/exploits/5777https://www.exploit-db.com/exploits/5778http://secunia.com/advisories/30603http://www.securityfocus.com/bid/29635http://www.vupen.com/english/advisories/2008/1795/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/42982https://www.exploit-db.com/exploits/5777https://www.exploit-db.com/exploits/5778
2008-06-17
Published