CVE-2009-1212

PrecisionID Datamatrix - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1212. PoCs published by DSecRG.

AI-analyzed exploit summary This exploit leverages the PrecisionID activeX control (DMATRIXLib.Datamatrix) to overwrite arbitrary files on the target system via the SaveBarCode() or SaveEnhWMF() methods. The provided HTML/JS PoC demonstrates file overwriting by calling SaveBarCode with a user-specified path.

Description

Multiple insecure method vulnerabilities in PRECIS~2.DLL in the PrecisionID Datamatrix ActiveX control (DMATRIXLib.Datamatrix) allow remote attackers to overwrite arbitrary files via the (1) SaveBarCode and (2) SaveEnhWMF methods.

Exploits (1)

exploitdb WORKING POC VERIFIED

by DSecRG · textremotewindows

https://www.exploit-db.com/exploits/8332

View Code ZIP pw:eip

This exploit leverages the PrecisionID activeX control (DMATRIXLib.Datamatrix) to overwrite arbitrary files on the target system via the SaveBarCode() or SaveEnhWMF() methods. The provided HTML/JS PoC demonstrates file overwriting by calling SaveBarCode with a user-specified path.

Classification

Working Poc 90%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: PrecisionID activeX controls (DMATRIXLib.Datamatrix)

No auth needed

Prerequisites: Target system must have the vulnerable PrecisionID activeX control installed · Victim must visit a malicious webpage or open a malicious HTML file

MITRE ATT&CK

T1221 - Template Injection T1218 - System Binary Proxy Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →