Vulnerability Details CVE-2010-5194
Stack-based buffer overflow in the Image2PDF function in the SCRIBBLE.ScribbleCtrl.1 ActiveX control (ImageViewer2.ocx) in Viscom Image Viewer CP Pro 8.0, Gold 5.5, Gold 6.0, and earlier allows remote attackers to execute arbitrary code via a long strPDFFile parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.281
EPSS Ranking 96.3%
CVSS Severity
CVSS v2 Score 9.3
References
- http://secunia.com/advisories/42445
- http://www.exploit-db.com/exploits/15658
- http://www.osvdb.org/69566
- https://exchange.xforce.ibmcloud.com/vulnerabilities/63642
- http://secunia.com/advisories/42445
- http://www.exploit-db.com/exploits/15658
- http://www.osvdb.org/69566
- https://exchange.xforce.ibmcloud.com/vulnerabilities/63642
Products affected by CVE-2010-5194
-
cpe:2.3:a:viscomsoft:image_viewer_cp_gold_sdk:5.5
-
cpe:2.3:a:viscomsoft:image_viewer_cp_gold_sdk:6.0
-
cpe:2.3:a:viscomsoft:image_viewer_cp_pro_sdk:8.0