Panasonic Security API CVE-2015-4648 ActiveX Control Stack Buffer Overflow Vulnerability

Panasonic Security API is prone to a stack-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.

Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the application (typically Internet Explorer) using the ActiveX control. Failed exploit attempts will likely result in denial-of-service conditions.


 

Privacy Statement
Copyright 2010, SecurityFocus