Advantech Studio ISSymbol ActiveX Control Buffer Overflow Exploit

Advantech Studio ISSymbol ActiveX control ISSymbol.ocx is vulnerable to a buffer overflow, caused by a long bstrFileName argument to the InternationalOrder method. This module runs a web server waiting for vulnerable clients (Internet Explorer) to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.
CVE Link
CVE-2011-0340
Exploit Platform
Windows
Exploit Type
Exploits
Client Side
Product Name
Impact