Stack-Based Buffer Overflow in Embarcadero ER/Studio Data Architect ActiveX Control
CVE-2014-4647

Currently unrated

Key Information:

Vendor: Embarcadero
Status: Er\/studio Data Architect
Vendor: CVE Published:; 7 August 2014

🔔 Create Embarcadero Vulnerability Alert

What is CVE-2014-4647?

A stack-based buffer overflow exists within the loadExtensionFactory method of the TSVisualization ActiveX control in Embarcadero ER/Studio Data Architect. This vulnerability allows remote attackers to exploit this flaw and potentially execute arbitrary code on vulnerable systems. The attack can occur through unspecified vectors, highlighting the need for prompt examination and mitigation of this issue to protect users from potential threats.

References

http://www.securityfocus.com/bid/68489

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/94480

vdb-entryx_refsource_XF

http://zerodayinitiative.com/advisories/ZDI-14-224/

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 7, 2014
Vulnerability Reserved
Jun 25, 2014

JSON