Multiple Vendor SizerOne ActiveX Control 'AddTab' Method Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

Multiple Vendor SizerOne ActiveX Control 'AddTab' Method Buffer Overflow Vulnerability

A commercial proof of concept is available through VUPEN Security - Exploit and PoCs Service. This exploit is not otherwise publicly available or known to be circulating in the wild.

An attacker may exploit this issue by enticing a victim into visiting a malicious webpage.