Ultra Office Control ActiveX Exploit

The Ultra Office Control ActiveX control (OfficeCtrl.ocx) is vulnerable to a stack-based buffer overflow. By persuading a victim to visit a specially-crafted Web page that passes an overly long string to the HttpUpload() method, a remote attacker could overflow a buffer and execute arbitrary code on the system with the privileges of the current user or cause the victim's browser to crash.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2008-3878
Product Version: 
7.5
Released Date: 
Wednesday, October 1, 2008 - 00:00