CVE-2009-1606 Information

Feb 14, 2021 cve

Description

Multiple stack-based and heap-based buffer overflows in Dafolo DafoloControl ActiveX control (DafoloFFControl.dll) 1.108.6.195 allow remote attackers to execute arbitrary code via long (1) baseurl (2) kommune (3) felter (4) afdeling (5) Flags (6) HelpURL (7) caburl or (8) filename properties; or (9) a long argument to the Open method. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Reference

http://secunia.com/advisories/35017 http://www.securityfocus.com/bid/34900 https://exchange.xforce.ibmcloud.com/vulnerabilities/50420 dafolo-baseurl-bo(50420) https://exchange.xforce.ibmcloud.com/vulnerabilities/50421 https://exchange.xforce.ibmcloud.com/vulnerabilities/50422 dafolo-helpurl-caburl-bo(50422) https://exchange.xforce.ibmcloud.com/vulnerabilities/50423 Multiple stack-based and heap-based buffer overflows in Dafolo DafoloControl ActiveX control (DafoloFFControl.dll) 1.108.6.195 allow remote attackers to execute arbitrary code via long (1) baseurl (2) kommune (3) felter (4) afdeling (5) Flags (6) HelpURL (7) caburl or (8) filename properties; or (9) a long argument to the Open method. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Share on: