cbcvebase.
CVE-2010-4597
published 2010-12-23

CVE-2010-4597: Stack-based buffer overflow in the save method in the IntegraXor.Project ActiveX control in igcomm.dll in Ecava IntegraXor Human-Machine Interface (HMI) before…

PriorityP260critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
18.82%
96.9th percentile
Stack-based buffer overflow in the save method in the IntegraXor.Project ActiveX control in igcomm.dll in Ecava IntegraXor Human-Machine Interface (HMI) before 3.5.3900.10 allows remote attackers to execute arbitrary code via a long string in the second argument.

Affected

1 ranges
VendorProductVersion rangeFixed in
ecavaintegraxor<= 3.5.3900.5

Detection & IOCsextracted from sources · hover to see the quote

filenameigcomm.dll
urlhttps://www.exploit-db.com/exploits/15767
commandtarget.save data,filepath
  • Exploitation triggers a call to lstrcpyW() with an oversized second argument (~1038 wide-char 'B' characters) to the save method; look for anomalously large second arguments to the save method on IntegraXor.Project ActiveX objects.
  • The vulnerable code path passes String1 (1024-byte wchar dest buffer) and lpString2 (src) to lstrcpyW() without length validation; set a breakpoint at igcomm.dll offset 0x100027C7 (call lstrcpyW) to catch exploitation attempts.
  • The PoC exploit serves a malicious HTML page over TCP port 80 from an attacker-controlled host; network detection should flag HTTP responses containing 'IntegraXor.Project' ActiveX instantiation with large string arguments to the save method.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.