{"id": "SAINT:546F927A71FB5276805132D53091C513", "title": "HP Photo Creations audio.Record ActiveX Stack Buffer Overflow", "modified": "2011-01-10T00:00:00", "published": "2011-01-10T00:00:00", "type": "saint", "references": [], "reporter": "SAINT Corporation", "edition": 1, "enchantments": {"score": {"value": 1.0, "vector": "NONE", "modified": "2017-01-10T14:03:42", "rev": 2}, "dependencies": {"references": [], "modified": "2017-01-10T14:03:42", "rev": 2}, "vulnersScore": 1.0}, "cvelist": [], "viewCount": 2, "description": "Added: 01/10/2011 \nBID: [45631](<http://www.securityfocus.com/bid/45631>) \n\n\n### Background\n\n[HP Photo Creations](<http://www.hp.com/global/us/en/consumer/digital_photography/free/software/photo-creations.html>) is free software that lets the user create photo books, calendars, collages, greeting cards and other keepsakes that can be printed or shipped to the user. HP Photo Creations installs and registers the `**audio.Record**` ActiveX control which contains various audio processing functions, e.g., recording, resampling, and importing. \n\n### Problem\n\nHP Photo Creations `**audio.Record**` ActiveX control is vulnerable to buffer overflow due to a boundary error in `**ContentMan.dll**` while parsing arguments passed to the `**Resample**` function. \n\n### Resolution\n\n[Update](<http://www.hp.com/global/us/en/consumer/digital_photography/free/software/photo-creations.html>) to HP Photo Creations build 5162, which includes `**ContentMan.dll**` version 1.0.0.5162. \n\n### References\n\n<http://secunia.com/advisories/42770/> \n\n\n### Limitations\n\nExploit works on HP Photo Creative 2.0 and the user must load the exploit page in Internet Explorer 7. \n\n### Platforms\n\nWindows \n \n\n", "bulletinFamily": "exploit", "href": "https://my.saintcorporation.com/cgi-bin/exploit_info/hp_photo_creations_audiorecord_activex", "cvss": {"vector": "NONE", "score": 0.0}, "lastseen": "2017-01-10T14:03:42"}

{}