CVE-2008-4922 – DjVu - 'DjVu_ActiveX_MSOffice.dll' ActiveX Component Buffer Overflow

https://notcve.org/view.php?id=CVE-2008-4922

04 Nov 2008 — Buffer overflow in the DjVu ActiveX Control 3.0 for Microsoft Office (DjVu_ActiveX_MSOffice.dll) allows remote attackers to execute arbitrary code via a long (1) ImageURL property, and possibly the (2) Mode, (3) Page, or (4) Zoom properties. Desbordamiento del búfer en el control ActiveX DjVu v3.0 para Microsoft Office (DjVu_ActiveX_MSOffice.dll) permite a atacantes remotos ejecutar código de su elección a través de un propiedad larga (1) ImageURL y puede que las propiedades (2) Mode, (3) Page, o Zoom. • https://www.exploit-db.com/exploits/16638 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •