CVE-2010-2931

Name of the Vulnerable Software and Affected Versions SigPlus Pro version 3.74

Description The issue is related to a stack-based buffer overflow in the SigPlus Pro ActiveX control. This occurs when a long eighth argument, specifically the HexString, is passed to the LCDWriteString method, allowing remote attackers to execute arbitrary code.

Recommendations For SigPlus Pro version 3.74, consider disabling the LCDWriteString method until a patch is available to prevent potential exploitation. Restrict access to the SigPlus Pro ActiveX control to minimize the risk of arbitrary code execution. Avoid using the HexString argument in the LCDWriteString method until the issue is resolved.