Описание
Multiple stack-based buffer overflows in MGI Software LPViewer ActiveX control (LPControl.dll), as acquired by Roxio and iseemedia, allow remote attackers to execute arbitrary code via the (1) url, (2) toolbar, and (3) enableZoomPastMax methods.
Ссылки
- Vendor Advisory
- US Government Resource
- Vendor Advisory
- US Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:iseemedia:lpviewer:*:*:*:*:*:*:*:*
cpe:2.3:a:mgi_software:lpviewer:*:*:*:*:*:*:*:*
cpe:2.3:a:roxio:lpviewer:*:*:*:*:*:*:*:*
EPSS
Процентиль: 98%
0.65003
Средний
9.3 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
почти 4 года назад
Multiple stack-based buffer overflows in MGI Software LPViewer ActiveX control (LPControl.dll), as acquired by Roxio and iseemedia, allow remote attackers to execute arbitrary code via the (1) url, (2) toolbar, and (3) enableZoomPastMax methods.
EPSS
Процентиль: 98%
0.65003
Средний
9.3 Critical
CVSS2
Дефекты
CWE-119