Corel ActiveCGM Browser ActiveX Control Multiple Buffer Overflow Vulnerabilities

Corel ActiveCGM Browser ActiveX Control Multiple Buffer Overflow Vulnerabilities

Corel ActiveCGM Browser ActiveX control is prone to multiple buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied data.

Successfully exploiting these issues allow remote attackers to execute arbitrary code in the context of applications that use the affected control (typically Internet Explorer).

Corel ActiveCGM Browser 7.1.4.19 is vulnerable; other versions may also be affected.