UCanCode E-XD++ Visualization Enterprise Suite Untrusted Pointer Dereference Remote Code Execution Vulnerability

A remote code execution vulnerability has been identified in UCanCode E-XD++ Visualization Enterprise Suite. This issue arises from an untrusted pointer dereference in the TKDRAWCAD.TKDrawCADCtrl.1 ActiveX control, specifically within the RotateShape method. The vulnerability allows for the execution of arbitrary code by dereferencing a user-supplied pointer without proper validation. Exploitation of this vulnerability requires user interaction, such as instantiating the ActiveX control via a web page or file.

Impact

Exploitation of this vulnerability allows remote attackers to execute arbitrary code on the affected system, with the executed code running in the context of the hosting process.

Remediation

Users can set the killbit for the TKDRAWCAD.TKDrawCADCtrl.1 ActiveX control to prevent it from being used in Internet Explorer. This can be done by modifying the Compatibility Flags DWORD value in the Windows Registry. Setting this value to 0x00000400 will disable the control in the browser.