Multiple buffer overflow vulnerabilities in ISSymbol.ocx in Advantec Studio, InduSoft Web Studio and InduSoft Thin ClientID: oval:org.secpod.oval:def:5935 | Date: (C)2012-06-05 (M)2021-06-02 |
Class: VULNERABILITY | Family: windows |
The host is installed with InduSoft Thin Client 7.0 or InduSoft Web Studio before 7.0+SP1 or Advantec Studio 6.1 SP6 and is prone to multiple buffer overflow vulnerabilities. The flaws are present in the activeX control, which fails to handle memory issues. Successful exploitation could allow remote attackers to execute arbitrary code.
Platform: |
Microsoft Windows 7 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Vista |
Microsoft Windows XP |
Product: |
InduSoft Thin Client |
InduSoft Web Studio |
Advantech Studio |