CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-6488

Stack-based buffer overflow in the DoModal function in the Dialog Wrapper Module ActiveX control (DlgWrapper.dll) before 8.4.166.0, as used by ICONICS OPC Enabled Gauge, Switch, and Vessel ActiveX, allows remote attackers to execute arbitrary code via a long (1) FileName or (2) Filter argument.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.18

EPSS Ranking 94.8%

CVSS Severity

CVSS v2 Score 7.5

References

http://osvdb.org/32552
http://secunia.com/advisories/23583
http://www.kb.cert.org/vuls/id/251969
http://www.securityfocus.com/bid/21849
http://www.vupen.com/english/advisories/2007/0025
https://exchange.xforce.ibmcloud.com/vulnerabilities/31228
http://osvdb.org/32552
http://secunia.com/advisories/23583
http://www.kb.cert.org/vuls/id/251969
http://www.securityfocus.com/bid/21849
http://www.vupen.com/english/advisories/2007/0025
https://exchange.xforce.ibmcloud.com/vulnerabilities/31228

Products affected by CVE-2006-6488

Iconics » Dialog Wrapper Module Activex Control » Version: 8.4.165.0

cpe:2.3:a:iconics:dialog_wrapper_module_activex_control:8.4.165.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-6488

Products

Pricing

Contact Us