Asus · Ipswcom.Dll · CVE-2012-4924
**Name of the Vulnerable Software and Affected Versions**
ASUS Net4Switch version 1.0.0020
ipswcom.dll ActiveX component version 1.0.0.1
**Description**
The issue is related to a buffer overflow in the CxDbgPrint function within the ipswcom.dll ActiveX component. This allows remote attackers to execute arbitrary code by providing a long parameter to the `Alert` method.
**Recommendations**
For ASUS Net4Switch version 1.0.0020, consider disabling the `Alert` method in the ipswcom.dll ActiveX component until a patch is available.
For ipswcom.dll ActiveX component version 1.0.0.1, restrict access to the CxDbgPrint function to minimize the risk of exploitation.