CVE-2012-4924

ASUS Net4Switch 1.0.0020 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2012-4924. PoCs published by Metasploit, Dmitriy Evdokimov, sinn3r, including Metasploit module exploits/windows/browser/asus_net4switch_ipswcom.

AI-analyzed exploit summary This Metasploit module exploits a stack buffer overflow in ASUS Net4Switch's ipswcom.dll ActiveX control via the CxDbgPrint function, allowing arbitrary code execution under the context of the user.

Description

Buffer overflow in the CxDbgPrint function in the ipswcom.dll ActiveX component 1.0.0.1 for ASUS Net4Switch 1.0.0020 allows remote attackers to execute arbitrary code via a long parameter to the Alert method.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/18538

This Metasploit module exploits a stack buffer overflow in ASUS Net4Switch's ipswcom.dll ActiveX control via the CxDbgPrint function, allowing arbitrary code execution under the context of the user.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: ASUS Net4Switch ipswcom.dll ActiveX control
No auth needed
Prerequisites: Target must have ASUS Net4Switch installed · Target must use Internet Explorer 6 or 7 on Windows XP SP3 · ActiveX must be enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by Dmitriy Evdokimov, sinn3r · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/asus_net4switch_ipswcom.rb

This Metasploit module exploits a stack-based buffer overflow in the ASUS Net4Switch ipswcom.dll ActiveX control via the CxDbgPrint function, allowing remote code execution under the context of the user. It uses heap spraying and JavaScript obfuscation to achieve reliable exploitation.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: ASUS Net4Switch ipswcom.dll ActiveX control
No auth needed
Prerequisites: Victim must visit a malicious webpage hosting the exploit · ActiveX control must be installed and enabled
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/73384
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/48125
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/52110
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/79438
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/18538
Various Sources x_refsource_misc
http://dsecrg.com/pages/vul/show.php?id=417

Scores

EPSS 0.3634
EPSS Percentile 98.3%

Details

CWE
CWE-119
Status published
Products (2)
asus/ipswcom_activex_component 1.0.0.1
asus/net4switch 1.0.0020
Published Sep 15, 2012
Tracked Since Feb 18, 2026