Lucene search
K

29 matches found

cnnvd
cnnvd
added 2021/11/30 12:0 a.m.5 views

NeoRS RS10 输入验证错误漏洞

Douzone Bizon NeoRs is a remote support service from Douzone Bizon in Korea. Remote Pc can be accessed and controlled anytime, anywhere through the remote support site. A security vulnerability exists in NeoRS RS10 version, which stems from improper validation of the parameters of the StartNeoRS...

9.3CVSS8.1AI score0.01606EPSS
Exploits0References2
osv
osv
added 2021/10/28 4:15 p.m.3 views

CVE-2020-7875

DEXT5 Upload 5.0.0.117 and earlier versions contain a vulnerability, which could allow remote attacker to download and execute remote file by setting the argument, variable in the activeX module. This can be leveraged for code execution...

8.8CVSS5.9AI score0.00606EPSS
Exploits0References1
nvd
nvd
added 2021/10/28 4:15 p.m.19 views

CVE-2020-7875

DEXT5 Upload 5.0.0.117 and earlier versions contain a vulnerability, which could allow remote attacker to download and execute remote file by setting the argument, variable in the activeX module. This can be leveraged for code execution...

8.8CVSS0.00606EPSS
Exploits0References1
prion
prion
added 2021/10/28 4:15 p.m.17 views

Design/Logic Flaw

DEXT5 Upload 5.0.0.117 and earlier versions contain a vulnerability, which could allow remote attacker to download and execute remote file by setting the argument, variable in the activeX module. This can be leveraged for code execution...

6.8CVSS8.8AI score0.00606EPSS
Exploits0References1Affected Software1
prion
prion
added 2021/09/09 1:15 p.m.15 views

Design/Logic Flaw

An arbitrary file download and execution vulnerability was found in the HShell.dll of handysoft Co., Ltd groupware ActiveX module. This issue is due to missing support for integrity check of download URL or downloaded file hash...

7.5CVSS9.2AI score0.00595EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2021/09/09 12:54 p.m.37 views

CVE-2021-26608 handysoft groupware arbitrary file download and execution vulnerability

An arbitrary file download and execution vulnerability was found in the HShell.dll of handysoft Co., Ltd groupware ActiveX module. This issue is due to missing support for integrity check of download URL or downloaded file hash...

8.8CVSS9.6AI score0.00595EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2021/09/09 12:0 a.m.6 views

PT-2021-17075 · Handysoft Co. · Handysoft Co.

Name of the Vulnerable Software and Affected Versions: handysoft Co., Ltd groupware affected versions not specified Description: The issue is related to an arbitrary file download and execution vulnerability found in the HShell.dll of handysoft Co., Ltd groupware ActiveX module. This vulnerabilit...

9.8CVSS9.2AI score0.00595EPSS
Exploits0References3
myhack58
myhack58
added 2019/04/15 12:0 a.m.135 views

The IE 11 browser is the explosion of security vulnerabilities: remotely steal local PC file-bug warning-the black bar safety net

Recently security experts in the IE 11 browser on the found new vulnerabilities in the process. MHT saved page can allow a hacker to steal the PC on the file. More importantly. MHT file format the default processing application is the IE 11 browser, so even the Chrome as the default web browser o...

0.9AI score
Exploits0
saint
saint
added 2012/05/30 12:0 a.m.84 views

IBM Rational ClearQuest CQOle ActiveX

Added: 05/30/2012 CVE: CVE-2012-0708 BID: 53170 OSVDB: 81443 Background Rational ClearQuest is an enterprise workflow automation tool. It functions as a bug tracking tool and can act as a CRM or process tracker. Problem The ClearQuest web client installs ActiveX modules on the client system. Thes...

9.3CVSS6.3AI score0.3095EPSS
Exploits10
Rows per page
Query Builder