Stack overflow

2009-04-1700:30:00

PRIOn knowledge base

www.prio-n.com

8.5 High

AI Score

Confidence

Low

0.167 Low

EPSS

Percentile

96.1%

JSON

Multiple stack-based buffer overflows in the Danske Bank e-Sec Control Module ActiveX control (DanskeSikker.ocx) 3.1.0.48, and possibly earlier versions, allow remote attackers to execute arbitrary code via long arguments to unspecified methods, which are not properly handled by a logging function.

CPENameOperatorVersion
danskesikker.ocxle3.1.0.48

CPE	Name	Operator	Version
	danskesikker.ocx	le	3.1.0.48

References

osvdb.org/53715

secunia.com/advisories/29635

secunia.com/secunia_research/2008-17/

www.securityfocus.com/archive/1/502725/100/0/threaded

www.securityfocus.com/bid/34549

www.vupen.com/english/advisories/2009/1047

exchange.xforce.ibmcloud.com/vulnerabilities/49903