102 matches found
CVE-2018-19444
A use after free in the TextBox field Validate action in IReaderContentProvider can occur for specially crafted PDF files in Foxit Reader SDK ActiveX Professional 5.4.0.1031. An attacker can leverage this to gain remote code execution. Relative to CVE-2018-19452, this has a different free locatio...
EUVD-2018-11141
Malware in sbrugna...
EUVD-2019-8800
Malware in sbrugna...
EUVD-2019-8801
Malware in sbrugna...
EUVD-2020-28798
Malware in sbrugna...
EUVD-2014-7923
Malware in sbrugna...
EUVD-2011-1743
Malware in sbrugna...
EUVD-2007-5796
Malware in sbrugna...
Microsoft Windows Out-of-Bounds Write Vulnerability
Microsoft Windows contains an out-of-bounds write vulnerability in the InformationCardSigninHelper Class ActiveX control, icardie.dll. An attacker could exploit the vulnerability by constructing a specially crafted webpage. When a user views the webpage, the vulnerability could allow remote code...
CVE-2011-5291
The SaveData method in the Cygnicon.ViewControl.1 ActiveX control in CyViewer.ocx in Ashampoo 3D CAD Professional 3.x before 3.0.2 allows remote attackers to write to arbitrary files via a pathname in the first argument...
CVE-2013-3543
The AXIS Media Control AMC ActiveX control AxisMediaControlEmb.dll 6.2.10.11 for AXIS network cameras allows remote attackers to create or overwrite arbitrary files via a file path to the 1 StartRecord, 2 SaveCurrentImage, or 3 StartRecordMedia methods...
Vulnerabilities fixed in Microsoft Windows
Microsoft has fixed vulnerabilities in Windows. A malicious party can exploit the vulnerabilities to carry out attacks that can lead to the categories of damage listed below. The most serious vulnerability has been assigned attribute CVE-2024-38124 and is located in the NETLOGON functionality...
Microsoft ActiveX 安全漏洞
Microsoft ActiveX are small applications from Microsoft USA that allow websites to serve up content such as videos and games. They also let you interact with content such as toolbars and stock quotes while browsing the Web. A security vulnerability exists in Microsoft ActiveX. An attacker...
Microsoft ActiveX Security Vulnerability
Microsoft ActiveX are small applications from Microsoft USA that allow Web sites to serve up content such as videos and games. They also let you interact with content such as toolbars and stock quotes while browsing the web. A security vulnerability exists in Microsoft ActiveX. The following...
The vulnerability of the ActiveX components of Microsoft Office programs allows a perpetrator to execute arbitrary code on the target system.
The vulnerability of the ActiveX components of Microsoft Office programs is related to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code on the target system using the created file...
CVE-2023-33152 Microsoft ActiveX Remote Code Execution Vulnerability
...
Description of the security update for Office 2013: July 11, 2023 (KB5002069)
Description of the security update for Office 2013: July 11, 2023 KB5002069 Summary This security update resolves a Microsoft ActiveX remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2023-33152. Note: To apply this...
The vulnerability of the ActiveX control on the SCADA server of Measuresoft ScadaPro Server allows a intruder to execute arbitrary code.
The vulnerability of the ActiveX control in the SCADA server of Measuresoft ScadaPro Server relates to the use of an untrusted indicator. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
Adobe Acrobat Reader Dc 信息泄露漏洞
Adobe Acrobat is a set of PDF file editing and conversion tools from the U.S. Adobe Acrobat Reader DC ActiveX space is vulnerable to information disclosure, which stems from errors in the configuration of the network system or product during operation. An unauthenticated attacker could exploit th...
CVE-2021-33673
Under certain conditions, SAP Contact Center - version 700,does not sufficiently encode user-controlled inputs and persists in them. This allows an attacker to exploit a Stored Cross-Site Scripting XSS vulnerability when a user browses through the employee directory and to execute arbitrary code ...