CVE-2010-2932

Published: 05/08/2010 Updated: 17/08/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 945

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Buffer overflow in BarCodeWiz BarCode 3.29 ActiveX control (BarcodeWiz.dll) allows remote malicious users to execute arbitrary code via a long argument to the LoadProperties method.

Vulnerable Product	Search on Vulmon	Subscribe to Product
barcodewiz barcode activex control 3.29

# BarCodeWiz Barcode ActiveX Control 329 BoF (SEH) # Bug found: 24th July 2010 # Author: loneferret # Software: wwwbarcodewizcom/ # Nods to exploit-dbcom # Vulnerable file BarCodeWizdll # LoadProperties method # Tested on: Windows XP Professional SP3 with Internet Explorer 6 # [Needs adjustment for Internet Explorer 7] # Vendor con ...

# BarCodeWiz Barcode ActiveX Control 329 PoC (SEH) # Bug found: 24th July 2010 # Found by: loneferret # Software: wwwbarcodewizcom/ # Nods to exploit-dbcom # Vulnerable file BarCodeWizdll # LoadProperties method # Tested on: # Windows XP Professional SP3 & Windows XP Home SP3 # Internet Explorer 6 & Internet Explorer 7 # Ve ...

<html> <object classid='clsid:CD3B09F1-26FB-41CD-B3F2-E178DFD3BCC6' id='target'></object> <script language='javascript'> // Payload is win32_exec - calcexe sh ...

CWE-119 http://www.exploit-db.com/exploits/14504 http://secunia.com/advisories/40786 http://www.securityfocus.com/bid/42097 http://www.exploit-db.com/exploits/14519 http://www.exploit-db.com/exploits/14505 https://exchange.xforce.ibmcloud.com/vulnerabilities/60838 https://nvd.nist.gov https://www.exploit-db.com/exploits/14505/

CVE-2010-2932

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect