header-logo
Suggest Exploit
vendor:
CoGSManager ActiveX control
by:
7.5
CVSS
HIGH
Remote stack-based buffer overflow
119
CWE
Product Name: CoGSManager ActiveX control
Affected Version From: 1.0.0.23
Affected Version To: 1.0.0.23
Patch Exists: NO
Related CWE:
CPE: a:ubisoft:cogsmanager_activex_control:1.0.0.23
Metasploit:
Other Scripts:
Platforms Tested:

Ubisoft CoGSManager ActiveX control Remote Stack-based Buffer Overflow Vulnerability

The Ubisoft CoGSManager ActiveX control is prone to a remote stack-based buffer-overflow vulnerability due to a lack of proper bounds checking on user-supplied input. Attackers can exploit this vulnerability to execute arbitrary code within the context of an application, typically Internet Explorer, that uses the ActiveX control. Failed exploit attempts will result in a denial-of-service condition.

Mitigation:

Unknown
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/48462/info

Ubisoft CoGSManager ActiveX control is prone to a remote stack-based buffer-overflow vulnerability because the application fails to properly bounds check user-supplied input.

Attackers can exploit this issue to execute arbitrary code within the context of an application (typically Internet Explorer) that uses the ActiveX control. Failed exploit attempts will result in a denial-of-service condition.

Ubisoft CoGSManager ActiveX control 1.0.0.23 is vulnerable. 

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/35885.zip