CVE-2010-4597
published 2010-12-23CVE-2010-4597: Stack-based buffer overflow in the save method in the IntegraXor.Project ActiveX control in igcomm.dll in Ecava IntegraXor Human-Machine Interface (HMI) before…
PriorityP260critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
18.82%
96.9th percentile
Stack-based buffer overflow in the save method in the IntegraXor.Project ActiveX control in igcomm.dll in Ecava IntegraXor Human-Machine Interface (HMI) before 3.5.3900.10 allows remote attackers to execute arbitrary code via a long string in the second argument.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ecava | integraxor | <= 3.5.3900.5 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Exploitation triggers a call to lstrcpyW() with an oversized second argument (~1038 wide-char 'B' characters) to the save method; look for anomalously large second arguments to the save method on IntegraXor.Project ActiveX objects. ↗
- →The vulnerable code path passes String1 (1024-byte wchar dest buffer) and lpString2 (src) to lstrcpyW() without length validation; set a breakpoint at igcomm.dll offset 0x100027C7 (call lstrcpyW) to catch exploitation attempts. ↗
- →The PoC exploit serves a malicious HTML page over TCP port 80 from an attacker-controlled host; network detection should flag HTTP responses containing 'IntegraXor.Project' ActiveX instantiation with large string arguments to the save method. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/42650http://www.exploit-db.com/exploits/15767http://www.integraxor.com/blog/integraxor-3-5-scada-security-issue-20101006-0109-vulnerability-notehttp://www.kb.cert.org/vuls/id/603928http://www.securityfocus.com/bid/45487http://www.us-cert.gov/control_systems/pdf/ICSA-10-322-01.pdfhttp://www.vupen.com/english/advisories/2010/3275http://secunia.com/advisories/42650http://www.exploit-db.com/exploits/15767http://www.integraxor.com/blog/integraxor-3-5-scada-security-issue-20101006-0109-vulnerability-notehttp://www.kb.cert.org/vuls/id/603928http://www.securityfocus.com/bid/45487http://www.us-cert.gov/control_systems/pdf/ICSA-10-322-01.pdfhttp://www.vupen.com/english/advisories/2010/3275
2010-12-23
Published