CVE-2008-4384 Information

Description

Multiple stack-based buffer overflows in MGI Software LPViewer ActiveX control (LPControl.dll) as acquired by Roxio and iseemedia allow remote attackers to execute arbitrary code via the (1) url (2) toolbar and (3) enableZoomPastMax methods.

Reference

http://secunia.com/advisories/32140 http://www.kb.cert.org/vuls/id/848873 http://www.securityfocus.com/bid/31604 http://www.vupen.com/english/advisories/2008/2749 https://exchange.xforce.ibmcloud.com/vulnerabilities/45699 Multiple stack-based buffer overflows in MGI Software LPViewer ActiveX control (LPControl.dll) as acquired by Roxio and iseemedia allow remote attackers to execute arbitrary code via the (1) url (2) toolbar and (3) enableZoomPastMax methods.