CVE-2010-2931

SigPlus Pro 3.74 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in SigPlus Pro 3.74 ActiveX control allows remote attackers to execute arbitrary code via a long eighth argument (HexString) to the LCDWriteString method.

Exploits (1)

exploitdb WORKING POC VERIFIED

by mr_me · htmlremotewindows

https://www.exploit-db.com/exploits/14514

View Code ZIP pw:eip

References (4)

[Vendor Advisory] http://secunia.com/advisories/40818

[Exploit] http://www.exploit-db.com/exploits/14514

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/60839

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11304

Scores

EPSS 0.0742

EPSS Percentile 91.8%

Details

CWE

CWE-119

Status published

Products (1)

topazsystems/sigplus_pro_activex_control 3.74

Published Aug 05, 2010

Tracked Since Feb 18, 2026