UCanCode E-XD Visualization Enterprise Suite UCCDRAW AddStringUserProperty Untrusted Pointer Dereference Exploit

The specific flaw exists within processing of the AddStringUserProperty method within the UCCDRAW.UCCDrawCtrl.1 ActiveX control. The process does not properly validate a user-supplied value prior to dereferencing it as a pointer. An attacker can leverage this vulnerability to execute arbitrary code under the context of the current process.
Exploit type: 
Platform: 
Vulnerabilty ID: 
NOCVE-9999-92371
Product Version: 
2017_R1
Released Date: 
Thursday, June 29, 2017 - 00:00