CVE-2021-47705 CNC_Ctrl DllUnregisterServer Access Violation

COMMAX UMS Client ActiveX Control 1.7.0.2 contains a heap-based buffer overflow vulnerability that allows attackers to execute arbitrary code by providing excessively long string arrays through multiple functions. Attackers can exploit improper boundary validation in CNCCtrl.dll to cause heap...

SUSE CVE-2006-3014

Microsoft Excel allows user-assisted attackers to execute arbitrary javascript and redirect users to arbitrary sites via an Excel spreadsheet with an embedded Shockwave Flash Player ActiveX Object, which is automatically executed when the user opens the spreadsheet...

Microsoft Internet Explorer Active-X Control Security Bypass

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MICROSOFT-INTERNET-EXPLORER-ACTIVEX-CONTROL-SECURITY-BYPASS.txt + twitter.com/hyp3rlinx + ISR: ApparitionSec Vendor www.microsoft.com Product Microsoft Internet Explorer MSIE...

Raonwiz DEXT5 安全漏洞

Raonwiz DEXT5 is a set of HTML5-based file transfer solution from Raonwiz Korea. The product supports encrypted file transfer, form building, and other features. A security vulnerability exists in DEXT5 Upload, which allows remote attackers to download and execute remote files by setting argument...

Adobe Flash Zero-Day Leveraged Via Office Docs in Campaign

An Adobe Flash Player zero-day exploit has been spotted in the wild as part of a widespread campaign, researchers said on Wednesday. Adobe has just issued a patch for the previously unknown critical flaw. The vulnerability, CVE-2018-15982, is a use-after-free flaw enabling arbitrary code executio...

Microsoft Windows 10 Active-X Creation/Deletion Vulnerability

Microsoft Windows 10 is a next-generation cross-platform operating system released by the American company Microsoft. A create/delete vulnerability exists in Microsoft Windows 10 Active-X. An attacker can exploit the vulnerability to create text files on the victim's machine and delete any file...

Microsoft Windows 10 scrrun.dll Active-X Creation / Deletion Issues

Title: Windows 10 'scrrun.dll' Multiple vulnerabilities Author: Nassim Asrir Contact: [email protected] / https://www.linkedin.com/in/nassim-asrir-b73a57122/ Vendor: https://www.microsoft.com/ Test ENV: ======== Browser : IE 11 OS: Windows 10 - x64 Details: ======== scrrun.dll...

Viscomsoft Calendar Active-X 2.0 - Multiple Crashes (PoC)

Exploit Title: Viscomsoft Calendar Active-X 2.0 - Multiple Crash PoCs Date: 01-03-2016 Exploit Author: Shantanu Khandelwal Twitter: @shantanu561993 Vendor Homepage: http://www.viscomsoft.com/ Software Link: http://www.viscomsoft.com/downloads/calendar.html Version: 2.0 Tested on: Windows XP IE-8 ...

Viscomsoft Calendar Active-X 2.0 - Multiple Crash PoCs

Exploit for windows platform in category dos / poc Exploit Title: Viscomsoft Calendar Active-X 2.0 - Multiple Crash PoCs Date: 01-03-2016 Exploit Author: Shantanu Khandelwal Twitter: @shantanu561993 Vendor Homepage: http://www.viscomsoft.com/ Software Link:...

Tango DropBox 3.1.5 Active-X Heap Spray Vulnerability

Tango DropBox active-x heap spray exploit that leverages a vulnerability in the COM component used eSellerateControl350.dll 3.6.5.0 method of the GetWebStoreURL member. Affects versions 3.1.5 and PRO. Tango DropBox Activex Heap Spray Exploit Version:3.1.5 + PRO The vulnerability lies in the COM...

Tango FTP 1.0 Active-X Heap Spray Vulnerability

Tango FTP active-x heap spray exploit that leverages a vulnerability in the COM component used eSellerateControl350.dll 3.6.5.0 method of the GetWebStoreURL member. Affects version 1.0 build 136. Tango FTP Activex Heap Spray Exploit Version:1.0Build 136 The vulnerability lies in the COM component...

Tango DropBox 3.1.5 Active-X Heap Spray

Tango DropBox Activex Heap Spray Exploit Version:3.1.5 + PRO The vulnerability lies in the COM component used eSellerateControl350.dll 3.6.5.0 method of the ''GetWebStoreURL' member. Vendor Homepage:http://etonica.com/dropbox/index.html Software Link:http://etonica.com/dropbox/download.html Autho...

Tango FTP 1.0 Active-X Heap Spray

Tango FTP Activex Heap Spray Exploit Version:1.0Build 136 The vulnerability lies in the COM component used eSellerateControl350.dll 3.6.5.0 method of the ''GetWebStoreURL' member. Vendor Homepage:http://www.tangoftp.com/index.html Software Link:http://www.tangoftp.com/downloads/index.html Author:...

SAP GUI 7.00 - BExGlobal Active-X unsecure method

No description provided by source. Security vulnerability found in SAP GUI 7.10 and BI 7.0 that allows operating system functions to be called remotely. Application: SAP GUI Versions Affected: SAP GUI SAP GUI 7.1 Vendor URL: http://SAP.com Bugs: Insecure method. Code Execution. Exploits: YES...

iDefense COMRaider Active X Control 'write()' Arbitrary File Overwrite Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33942/info iDefense COMRaider ActiveX control is prone to a vulnerability that lets attackers overwrite arbitrary local files on the victim's computer in the context of the vulnerable application using the ActiveX control...

Microsoft Windows Media Player 7.0 .WMS Arbitrary Script Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1976/info Windows Media Player is an application used for digital audio, and video content viewing. It is possible for a user running Windows Media Player 7 to enable a skin .wms file and unknowingly execute an embedded...

SAP GUI 7.10 - WebViewer3D Active-X JIT-Spray Exploit

No description provided by source. SAP GUI version 7.10 WebViewer3D Active-X JIT-Spray exploit Author: Alexey Sintsov Homepage: http://www.dsec.ru/ http://www.exploit-db.com/sploits/11661.zip...

EB Design ebCrypt Active X Denial of Service - Ver2 (CVE-2007-5110)

A denial-of-service vulnerability has been reported in EB Design ebCrypt. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on the affected system...

KingView 6.53 Active-X File Copy

KingView Insecure ActiveX Control Proof of Concept - SuperGrid.ocx This proof of concept will copy any arbritrary file from one location to a second location. A malicious user may be able to use this to copy a file from an attacker controlled share to the target or from the target to an attacker...

Edraw Diagram Component 5 Active-X Buffer Overflow

Author : Senator of Pirates This exploit tested on Windows Xp SP3 EN http://www.edrawsoft.com/download/EDBoardSetup.exe -------------------------------------------------------------------------------------------------------- targetFile = "C:\Program Files\edboard\EDBoard.ocx" prototype =...