Ultra Office Control ActiveX Exploit

The Ultra Office Control ActiveX control (OfficeCtrl.ocx) is vulnerable to a stack-based buffer overflow. By persuading a victim to visit a specially-crafted Web page that passes an overly long string to the HttpUpload() method, a remote attacker could overflow a buffer and execute arbitrary code on the system with the privileges of the current user or cause the victim's browser to crash.
Exploit type: 
Vulnerabilty ID: 
Released Date: 
Tuesday, September 30, 2008 - 19:00