Vulnerability Details CVE-2006-1172
Stack-based buffer overflow in the createPKCS10 function in Cryptomathic Cenroll ActiveX Control 1.1.0.0 allows remote attackers to execute arbitrary code via vectors related to the TDC Digital signature.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.208
EPSS Ranking 95.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://cirt.dk/advisories/cirt-43-advisory.pdf
- http://secunia.com/advisories/19968
- http://securitytracker.com/id?1016034
- http://www.kb.cert.org/vuls/id/548689
- http://www.osvdb.org/25282
- http://www.securityfocus.com/archive/1/433079/100/0/threaded
- http://www.securityfocus.com/bid/17852
- http://www.vupen.com/english/advisories/2006/1675
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26255
- http://cirt.dk/advisories/cirt-43-advisory.pdf
- http://secunia.com/advisories/19968
- http://securitytracker.com/id?1016034
- http://www.kb.cert.org/vuls/id/548689
- http://www.osvdb.org/25282
- http://www.securityfocus.com/archive/1/433079/100/0/threaded
- http://www.securityfocus.com/bid/17852
- http://www.vupen.com/english/advisories/2006/1675
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26255
Products affected by CVE-2006-1172
-
cpe:2.3:a:tdc:cryptomathic_cenroll_activex_control:1.1.0.0