Unrated severityNVD Advisory· Published Dec 31, 2006· Updated Apr 23, 2026

CVE-2006-6488

Description

Stack-based buffer overflow in the DoModal function in the Dialog Wrapper Module ActiveX control (DlgWrapper.dll) before 8.4.166.0, as used by ICONICS OPC Enabled Gauge, Switch, and Vessel ActiveX, allows remote attackers to execute arbitrary code via a long (1) FileName or (2) Filter argument.

Affected products

Iconics/Dialog Wrapper Module Activex Control
cpe:2.3:a:iconics:dialog_wrapper_module_activex_control:*:*:*:*:*:*:*:*
Range: <=8.4.165.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/23583nvdVendor Advisory
www.kb.cert.org/vuls/id/251969nvdThird Party AdvisoryUS Government Resource
osvdb.org/32552nvd
www.securityfocus.com/bid/21849nvd
www.vupen.com/english/advisories/2007/0025nvd
exchange.xforce.ibmcloud.com/vulnerabilities/31228nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.024
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000