SolarWinds Application Monitor suffers from an ActiveX heap overflow. The vulnerability is caused due to an error when handling the "PEstrarg1" member within the bundled GigaSoft ProEssentials PieChart ActiveX control (pepco32c.ocx). This module runs a web server waiting for vulnerable clients (Internet Explorer 6, 7 or 8) to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.
Exploit Platform
Exploit Type
Product Name