Microsoft Internet Explorer Speech API 4 COM Object Instantiation Buffer Overflow Vulnerabilities

info
discussion
exploit
solution
references

Microsoft Internet Explorer Speech API 4 COM Object Instantiation Buffer Overflow Vulnerabilities

UPDATE (March 26, 2008): The 'Xvoice.dll' issue is being actively exploited in the wild.

Exploits for both Windows 2000 SP4 and Windows XP SP2 systems are available:

/data/vulnerabilities/exploits/MS2KSP4_Speech_API_ActiveX_BoF.txt
/data/vulnerabilities/exploits/MSXPSP2_Speech_API_ActiveX_BoF.txt
/data/vulnerabilities/exploits/24426.html