Advantech WebAccess dvs GetColor Stack Buffer Overflow Exploit

The specific flaw exists within the DVC.DvcCtrl ActiveX Control in dvs.ocx. The control does not check the length of an attacker-supplied string in the GetColor method before copying it into a fixed length buffer on the stack. This allows an attacker to execute arbitrary code in the context of the browser process.
Exploit type: 
Vulnerabilty ID: 
Product Version: 
Released Date: 
Wednesday, August 6, 2014 - 00:00