CVE-2010-1518

Name of the Vulnerable Software and Affected Versions GIGABYTE Dldrv2 ActiveX control version 1.4.206.11

Description The issue is related to an array index error in the SetDLInfo method of the GIGABYTE Dldrv2 ActiveX control. This error can be exploited by remote attackers to execute arbitrary code or cause a denial of service due to memory corruption. The exploitation is possible via the item argument.

Recommendations For GIGABYTE Dldrv2 ActiveX control version 1.4.206.11, consider disabling the SetDLInfo method as a temporary workaround until a patch is available. Restrict access to the item argument in the affected ActiveX control to minimize the risk of exploitation.