3 matches found
CVE-2008-3702
Multiple stack-based buffer overflows in the Animation GIF ActiveX control in JComSoft AniGIF.ocx 1.12 and 2.47, as used in products such as SpeedBit Download Accelerator Plus DAP 8.6, allow remote attackers to execute arbitrary code via a long argument to the 1 ReadGIF or 2 ReadGIF2 method...
dap86-overflow.txt
// anigif.ocx by www.jcomsoft.com can be found distribuited with some applications, // I found it in Download Accelerator Plus 6.8. // DAP comes with an old version, but the last from jcomsoft is also vulnerable: // there's a stack-based buffer overflow in the ReadGIF and ReadGIF2 methods, // the...
JComSoft AniGIF.ocx ActiveX控件多个栈溢出漏洞
BUGTRAQ ID: 30621 Animation GIF ActiveX控件(anigif.ocx)用于在OLE容器中显示GIF文件。 anigif.ocx控件没有正确地验证对ReadGIF和ReadGIF2方式所传送的输入参数,如果用户受骗访问了恶意网页并向上述方式传送了超长参数的话,就可以触发栈溢出,导致执行任意指令。 JComSoft Animation GIF ActiveX 2.4.7 JComSoft Animation GIF ActiveX 1.12b JComSoft Animation GIF ActiveX 1.12a JComSoft --------...