Symantec WinFax Pro 'DCCFAXVW.DLL' Heap Buffer Overflow Vulnerability

Symantec WinFax Pro 'DCCFAXVW.DLL' Heap Buffer Overflow Vulnerability

A working commercial exploit is available through VUPEN Security - Exploit and PoCs Service. This exploit is not otherwise publicly available or known to be circulating in the wild.

Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.

UPDATE (May 19, 2009): Symantec has detected active exploit attempts of this issue in the wild.

The following exploit code is available:

/data/vulnerabilities/exploits/34766.html