CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
96.8%
Buffer overflow in the IconCreate method in an ActiveX control in the DaumGame ActiveX plugin 1.1.0.4 and 1.1.0.5 allows remote attackers to execute arbitrary code via a long string, as exploited in the wild in January 2014.
Vendor | Product | Version | CPE |
---|---|---|---|
daum_communications | daumgame_activex_control | 1.1.0.4 | cpe:2.3:a:daum_communications:daumgame_activex_control:1.1.0.4:*:*:*:*:*:*:* |
daum_communications | daumgame_activex_control | 1.1.0.5 | cpe:2.3:a:daum_communications:daumgame_activex_control:1.1.0.5:*:*:*:*:*:*:* |