Home

Description

UCanCode E-XD++ Visualization Enterprise Suite contains an untrusted pointer dereference vulnerability via the TKDRAWCAD.TKDrawCADCtrl.1 ActiveX control. This is because it exposes a RotateShape method that dereferences a user-supplied pointer without sufficient validation. A crafted input may cause the control to dereference an attacker-controlled pointer, enabling remote code execution in the context of the hosting process. The vulnerability requires user interaction (instantiation of the ActiveX control via a web page or a file).

PUBLISHED Reserved 2025-11-12 | Published 2025-11-12 | Updated 2025-11-13 | Assigner VulnCheck




HIGH: 8.6CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-823 Use of Out-of-range Pointer Offset

Product status

Default status
unaffected

Any version
affected

Timeline

2017-06-02:ZDI publicly discloses vulnerability.

Credits

rgod finder

Zero Day Initiative (ZDI) coordinator

References

www.zerodayinitiative.com/advisories/ZDI-17-422/ technical-description

www.ucancode.net/ product

www.vulncheck.com/...suite-untrusted-pointer-dereference-rce third-party-advisory

cve.org (CVE-2017-20211)

nvd.nist.gov (CVE-2017-20211)

Download JSON