CVE-2008-4922

2008-11-0420:00:00

mitre

www.cve.org

7.9 High

AI Score

Confidence

High

0.669 Medium

EPSS

Percentile

98.0%

JSON

Buffer overflow in the DjVu ActiveX Control 3.0 for Microsoft Office (DjVu_ActiveX_MSOffice.dll) allows remote attackers to execute arbitrary code via a long (1) ImageURL property, and possibly the (2) Mode, (3) Page, or (4) Zoom properties.

References

securityreason.com/securityalert/4560

www.securityfocus.com/bid/31987

www.vupen.com/english/advisories/2008/2956

exchange.xforce.ibmcloud.com/vulnerabilities/46214

www.exploit-db.com/exploits/6878