CVE-2008-3702

Published: Aug 15, 2008Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Multiple stack-based buffer overflows in the Animation GIF ActiveX control in JComSoft AniGIF.ocx 1.12 and 2.47, as used in products such as SpeedBit Download Accelerator Plus (DAP) 8.6, allow remote attackers to execute arbitrary code via a long argument to the (1) ReadGIF or (2) ReadGIF2 method.

Affected (3)

Products: Jcomsoft: Anigif · Speedbit: Download Accelerator Plus

1 product

1 product

Download Accelerator Plus

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Jcomsoft Anigif	Version 1.12
Jcomsoft Anigif	Version 2.47

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Speedbit Download Accelerator Plus	Version 8.6

Related CWEs

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (8)

http://securityreason.com/securityalert/4159

Source: cve@mitre.org

http://www.securityfocus.com/bid/30621

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/44412

Source: cve@mitre.org

https://www.exploit-db.com/exploits/6216

Source: cve@mitre.org

http://securityreason.com/securityalert/4159

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/30621

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/44412

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.exploit-db.com/exploits/6216

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.