Vantage Linguistics AnswerWorks ActiveX Controls Multiple Unspecified Vulnerabilities

Vantage Linguistics AnswerWorks ActiveX Controls Multiple Unspecified Vulnerabilities

Multiple Vantage Linguistics AnswerWorks ActiveX controls are prone to multiple unspecified vulnerabilities.

Successfully exploiting these issues will allow remote attackers to execute arbitrary code in the context of an application using the ActiveX control or to trigger denial-of-service conditions. However, the precise impact has not been confirmed.

AnswerWorks 3.0.0.0 - 4.0.0.100 and 5.0.0.0 - 5.0.0.6 are vulnerable.

NOTE: Currently, very few details are available regarding these issues. We will update this BID as more information emerges. Individual issues may be given separate BIDs.

UPDATE (December 31, 2007): Three of these issues are known to be buffer-overflow vulnerabilities.