CVE-2007-4489

Name of the Vulnerable Software and Affected Versions eCentrex VOIP Client module using uacomx.ocx version 2.0.1

Description The issue is related to a buffer overflow in the IUAComFormX ActiveX control. This can be exploited by remote attackers to execute arbitrary code. The exploitation occurs through a long Username argument to the ReInit method.

Recommendations For version 2.0.1 of uacomx.ocx, consider disabling the ReInit method as a temporary workaround until a patch is available. Restrict access to the IUAComFormX ActiveX control to minimize the risk of exploitation. Avoid using long Username arguments in the affected module until the issue is resolved.