Edraw Office Viewer Component Buffer Overflow Exploit

This module exploits a vulnerability in the officeviewer.ocx control included in the Edraw Office Viewer Component ActiveX application. The exploit is triggered when the HttpPost() method processes a long string argument resulting in a stack-based buffer overflow. This module runs a malicious web site on the CORE IMPACT Console and waits for an unsuspecting user to trigger the exploit by connecting to the web site.
Exploit type: 
Platform: 
Vulnerabilty ID: 
NOCVE-9999-47275
Product Version: 
11.0
Released Date: 
Monday, February 28, 2011 - 00:00