Vulnerability Description
Stack-based buffer overflow in the Image2PDF function in the SCRIBBLE.ScribbleCtrl.1 ActiveX control (ImageViewer2.ocx) in Viscom Image Viewer CP Pro 8.0, Gold 5.5, Gold 6.0, and earlier allows remote attackers to execute arbitrary code via a long strPDFFile parameter.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Viscomsoft | Image Viewer Cp Gold Sdk | 5.5 |
| Viscomsoft | Image Viewer Cp Pro Sdk | 8.0 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/42445Vendor Advisory
- http://www.exploit-db.com/exploits/15658Exploit
- http://www.osvdb.org/69566
- https://exchange.xforce.ibmcloud.com/vulnerabilities/63642
- http://secunia.com/advisories/42445Vendor Advisory
- http://www.exploit-db.com/exploits/15658Exploit
- http://www.osvdb.org/69566
- https://exchange.xforce.ibmcloud.com/vulnerabilities/63642
FAQ
What is CVE-2010-5194?
CVE-2010-5194 is a vulnerability with a CVSS score of 9.3 (HIGH). Stack-based buffer overflow in the Image2PDF function in the SCRIBBLE.ScribbleCtrl.1 ActiveX control (ImageViewer2.ocx) in Viscom Image Viewer CP Pro 8.0, Gold 5.5, Gold 6.0, and earlier allows remote...
How severe is CVE-2010-5194?
CVE-2010-5194 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-5194?
Check the references section above for vendor advisories and patch information. Affected products include: Viscomsoft Image Viewer Cp Gold Sdk, Viscomsoft Image Viewer Cp Pro Sdk.