CVE-2011-0324 Information

Description

Multiple heap-based buffer overflows in Topaz Systems SigPlus Pro ActiveX Control 3.95 and possibly other versions before 4.29 allow remote attackers to execute arbitrary code via a long (1) KeyString property (2) NewPath parameter to the SetLocalIniFilePath method or (3) NewPortPath parameter to the SetTabletPortPath method.

Reference

http://secunia.com/advisories/42800 http://secunia.com/secunia_research/2011-2/ http://www.securityfocus.com/bid/46128 https://exchange.xforce.ibmcloud.com/vulnerabilities/65114 https://exchange.xforce.ibmcloud.com/vulnerabilities/65115 https://exchange.xforce.ibmcloud.com/vulnerabilities/65116