Intrusion Prevention

Edraw.Office.Viewer.Httppost.ActiveX.Buffer.Overflow

Description

This indicates a possible exploit of a buffer overflow vulnerability in the Edraw Office Viewer Component ActiveX control.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted argument to the HttpPost method. It allows a remote attacker to execute arbitrary code.

Affected Products

Edraw Office Viewer Component 7.x
Edraw Office Viewer Component ActiveX Control 7.x

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are not aware of any vendor supplied patch for this issue.

Other References

http://osvdb.org/72298