CVSS: 9.3EPSS: 2%CPEs: 3EXPL: 1CVE-2012-0227
https://notcve.org/view.php?id=CVE-2012-0227
Buffer overflow in the VSFlex7.VSFlexGrid ActiveX control in ComponentOne FlexGrid 7.1, as used in Open Automation Software OPC Systems.NET, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long archive file name argument to the Archive method. Desbordamiento de búfer en el control ActiveX VSFlex7.VSFlexGrid en ComponentOne FlexGrid v7.1, como el usado en Open Automation Software OPC Systems.NET, permite a atacantes remotos provocar una denegación de servicio (caída) o ejecutar código de su elección mediante un nombre del fichero largo como argumento sobre el método Archive. • http://dsecrg.com/pages/vul/show.php?id=406 http://www.securityfocus.com/bid/51601 http://www.us-cert.gov/control_systems/pdf/ICSA-12-012-01A.pdf https://exchange.xforce.ibmcloud.com/vulnerabilities/72604 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.8EPSS: 27%CPEs: 1EXPL: 1CVE-2007-6028 – ComponentOne FlexGrid 7.1 - ActiveX Control Multiple Buffer Overflow Vulnerabilities
https://notcve.org/view.php?id=CVE-2007-6028
Multiple stack-based buffer overflows in the VSFlexGrid.VSFlexGridL ActiveX control in ComponentOne FlexGrid 7.1 Light allow remote attackers to cause a denial of service and possibly execute arbitrary code via a long string in the (1) Text, (2) EditSelText, (3) EditText, and (4) CellFontName property values. Múltiples desbordamientos de búfer basado en pila en el control ActiveX VSFlexGrid.VSFlexGridL de ComponentOne FlexGrid 7.1 Light permiten a atacantes remotos provocar una denegación de servicio y posiblemente ejecutar código de su elección mediante una cadena larga en los valores de propiedad (1) Text, (2) EditSelText, (3) EditText, y (4) CellFontName. • https://www.exploit-db.com/exploits/30772 http://marc.info/?l=full-disclosure&m=119517573408574&w=2 http://www.securityfocus.com/bid/26467 https://exchange.xforce.ibmcloud.com/vulnerabilities/38507 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •