Vulnerability Description
Stack-based buffer overflow in the TIFMergeMultiFiles function in the SCRIBBLE.ScribbleCtrl.1 ActiveX control (ImageViewer2.ocx) in Viscom Image Viewer CP Pro 8.0 and Gold 6.0 allows remote attackers to execute arbitrary code via a long strDelimit parameter.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Viscomsoft | Image Viewer Cp Gold Sdk | 6.0 |
| Viscomsoft | Image Viewer Cp Pro Sdk | 8.0 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/42445Vendor Advisory
- http://www.exploit-db.com/exploits/15668
- http://www.exploit-db.com/exploits/18123Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/63666
- http://secunia.com/advisories/42445Vendor Advisory
- http://www.exploit-db.com/exploits/15668
- http://www.exploit-db.com/exploits/18123Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/63666
FAQ
What is CVE-2010-5193?
CVE-2010-5193 is a vulnerability with a CVSS score of 9.3 (HIGH). Stack-based buffer overflow in the TIFMergeMultiFiles function in the SCRIBBLE.ScribbleCtrl.1 ActiveX control (ImageViewer2.ocx) in Viscom Image Viewer CP Pro 8.0 and Gold 6.0 allows remote attackers ...
How severe is CVE-2010-5193?
CVE-2010-5193 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-5193?
Check the references section above for vendor advisories and patch information. Affected products include: Viscomsoft Image Viewer Cp Gold Sdk, Viscomsoft Image Viewer Cp Pro Sdk.