6 matches found
CVE-2008-4384
creationtimestamp| type| source ---|---|--- 2010-05-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16571 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/lpviewerurl.rb 2025-02-06 03:13:39+00:00| seen|...
iseemedia / Roxio / MGI Software LPViewer - ActiveX Control Buffer Overflow (Metasploit)
$Id: lpviewerurl.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
LPViewer ActiveX Control url property buffer overflow
Added: 11/21/2008 CVE: CVE-2008-4384 BID: 31604 OSVDB: 48946 Background The LPViewer ActiveX Control installs with the iseemedia ZOOM control viewer and allows viewing of images created with iseemedia software. Problem A buffer overflow vulnerability allows command execution when a user opens a w...
LPViewer ActiveX Control url property buffer overflow
Added: 11/21/2008 CVE: CVE-2008-4384 BID: 31604 OSVDB: 48946 Background The LPViewer ActiveX Control installs with the iseemedia ZOOM control viewer and allows viewing of images created with iseemedia software. Problem A buffer overflow vulnerability allows command execution when a user opens a w...
iseemedia / Roxio / MGI Software LPViewer ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in LPViewer ActiveX control LPControll.dll 3.2.0.2. When sending an overly long string to the URL property an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
CVE-2008-4384
CVE-2008-4384 affects the MGI Software LPViewer ActiveX control (LPControl.dll) across Roxio and iseemedia, with stack-based buffer overflows in the url(), toolbar(), and enableZoomPastMax() methods that may allow remote code execution when a crafted HTML page is viewed. The vulnerability is demo...