Vulnerabilities > CVE-2006-1172 - Remote Buffer Overflow vulnerability in TDC Cryptomathic Cenroll Activex Control 1.1.0.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Stack-based buffer overflow in the createPKCS10 function in Cryptomathic Cenroll ActiveX Control 1.1.0.0 allows remote attackers to execute arbitrary code via vectors related to the TDC Digital signature.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Cryptomathic ActiveX Control Remote Buffer Overflow Vulnerability. CVE-2006-1172. Remote exploit for windows platform |
| id | EDB-ID:27820 |
| last seen | 2016-02-03 |
| modified | 2006-05-05 |
| published | 2006-05-05 |
| reporter | Dennis Rand |
| source | https://www.exploit-db.com/download/27820/ |
| title | Cryptomathic ActiveX Control Remote Buffer Overflow Vulnerability |
References
- http://cirt.dk/advisories/cirt-43-advisory.pdf
- http://secunia.com/advisories/19968
- http://securitytracker.com/id?1016034
- http://www.kb.cert.org/vuls/id/548689
- http://www.osvdb.org/25282
- http://www.securityfocus.com/archive/1/433079/100/0/threaded
- http://www.securityfocus.com/bid/17852
- http://www.vupen.com/english/advisories/2006/1675
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26255