Multiple stack-based buffer overflows in the KSign KSignSWAT ActiveX Control (AxKSignSWAT.dll) 2.0.3.3 allow remote attackers to execute arbitrary code via long arguments to the (1) SWAT_Init, (2) SWAT_InitEx, (3) SWAT_InitEx2, (4) SWAT_InitEx3, and (5) SWAT_Login functions.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ksignswat | Ksign | 2.0.3.3 (including) | 2.0.3.3 (including) |
References
- http://marc.info/?l=full-disclosure\u0026m=117981953312669\u0026w=2
- http://osvdb.org/36517
- http://secunia.com/advisories/25357
- http://www.securityfocus.com/bid/24088
- http://www.vupen.com/english/advisories/2007/1901
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34417
- http://marc.info/?l=full-disclosure\u0026m=117981953312669\u0026w=2
- http://osvdb.org/36517
- http://secunia.com/advisories/25357
- http://www.securityfocus.com/bid/24088
- http://www.vupen.com/english/advisories/2007/1901
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34417