CVE-2018-5221

CVE: CVE-2018-5221
Published: 2018-01-09T16:29Z
Vendor: barcodewiz
Products: barcode_activex_control
Versions: 2.0, 2.52, 3.29,
Description Language: en
Description: Multiple buffer overflows in BarCodeWiz BarCode before 6.7 ActiveX control (BarcodeWiz.DLL) allow remote attackers to execute arbitrary code via a long argument to the (1) BottomText or (2) TopText property.
References:
http://hyp3rlinx.altervista.org/advisories/BARCODEWIZ-v6.7-ACTIVEX-COMPONENT-BUFFER-OVERFLOW.txt
http://packetstormsecurity.com/files/145731/BarcodeWiz-ActiveX-Control-Buffer-Overflow.html