CVE-2006-6488

Published: Dec 31, 2006Modified: Apr 23, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Stack-based buffer overflow in the DoModal function in the Dialog Wrapper Module ActiveX control (DlgWrapper.dll) before 8.4.166.0, as used by ICONICS OPC Enabled Gauge, Switch, and Vessel ActiveX, allows remote attackers to execute arbitrary code via a long (1) FileName or (2) Filter argument.

Affected (1)

Products: Iconics: Dialog Wrapper Module Activex Control

1 product

Dialog Wrapper Module Activex Control

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Iconics Dialog Wrapper Module Activex Control	Up to 8.4.165.0

References (12)

http://osvdb.org/32552

Source: cret@cert.org

http://secunia.com/advisories/23583

Source: cret@cert.org

Vendor Advisory

http://www.kb.cert.org/vuls/id/251969

Source: cret@cert.org

Third Party AdvisoryUS Government Resource

http://www.securityfocus.com/bid/21849

Source: cret@cert.org

http://www.vupen.com/english/advisories/2007/0025

Source: cret@cert.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/31228

Source: cret@cert.org

http://osvdb.org/32552

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/23583

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.kb.cert.org/vuls/id/251969

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

http://www.securityfocus.com/bid/21849

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/0025

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/31228

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.