CVE-2008-4384

LPViewer ActiveX Control - Stack-Based Buffer Overflow via url/toolbar/enableZoomPastMax Methods

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2008-4384. PoCs published by Metasploit, MC, including Metasploit module exploits/windows/browser/lpviewer_url.

AI-analyzed exploit summary This exploit targets a stack buffer overflow in the LPViewer ActiveX control (LPControll.dll 3.2.0.2) by sending an overly long string to the URL() property, allowing arbitrary code execution. It uses a Metasploit module to generate and deliver the payload via an HTTP server.

Description

Multiple stack-based buffer overflows in MGI Software LPViewer ActiveX control (LPControl.dll), as acquired by Roxio and iseemedia, allow remote attackers to execute arbitrary code via the (1) url, (2) toolbar, and (3) enableZoomPastMax methods.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16571

This exploit targets a stack buffer overflow in the LPViewer ActiveX control (LPControll.dll 3.2.0.2) by sending an overly long string to the URL() property, allowing arbitrary code execution. It uses a Metasploit module to generate and deliver the payload via an HTTP server.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: LPViewer ActiveX control (LPControll.dll 3.2.0.2)
No auth needed
Prerequisites: Victim must visit a malicious webpage hosting the exploit · ActiveX control must be installed and enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by MC · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/lpviewer_url.rb

This Metasploit module exploits a stack buffer overflow in the LPViewer ActiveX control (LPControll.dll 3.2.0.2) by sending an overly long string to the URL() property, leading to arbitrary code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: LPViewer ActiveX control (LPControll.dll 3.2.0.2)
No auth needed
Prerequisites: Victim must visit a malicious webpage hosting the exploit · ActiveX control must be installed and enabled
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (5)

Core 5
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32140
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/31604
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/45699
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/848873
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/2749

Scores

EPSS 0.2871
EPSS Percentile 97.9%

Details

CWE
CWE-119
Status published
Products (3)
iseemedia/lpviewer
mgi_software/lpviewer
roxio/lpviewer
Published Oct 07, 2008
Tracked Since Feb 18, 2026