Heap-Based Buffer Overflow in Gigasoft ActiveX Controls

Heap-Based Buffer Overflow in Gigasoft ActiveX Controls

CVE-2017-7908 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

A heap-based buffer overflow exists in the third-party product Gigasoft, v5 and prior, included in GE Communicator 3.15 and prior. A malicious HTML file that loads the ActiveX controls can trigger the vulnerability via unchecked function calls.

Learn more about our Web Application Penetration Testing UK.