EUVD-2012-1267

Malware in sbrugna...

Hardcoded credentials

GRScript18.dll before 1.2.2.0 in ActiveScriptRuby ASR before 1.8.7 does not properly restrict interaction with an Internet Explorer ActiveX environment, which allows remote attackers to execute arbitrary Ruby code via a crafted HTML document...

CVE-2012-1241

GRScript18.dll before 1.2.2.0 in ActiveScriptRuby ASR before 1.8.7 does not properly restrict interaction with an Internet Explorer ActiveX environment, which allows remote attackers to execute arbitrary Ruby code via a crafted HTML document...

CVE-2012-1241

ActiveScriptRuby's GRScript18.dll (before 1.2.2.0) is vulnerable due to improper restriction of interaction with Internet Explorer ActiveX, allowing a remote attacker to execute arbitrary Ruby code via a crafted HTML document. Affected product: ActiveScriptRuby with GRScript18.dll; vulnerable ver...

ActiveScriptRuby 'GRScript18.dll' ActiveX控件DLL装载任意代码执行漏洞

Bugtraq ID: 53011 CVE ID：CVE-2012-1241 ActiveScriptRuby用于把Ruby实现到Windows环境中。 ActiveScriptRuby存在一个安全漏洞，允许恶意用户执行任意代码。 GRScript18.dll存在一个错误，可被利用执行任意Ruby命令，构建恶意WEB页，诱使用户解析可触发此漏洞。 0 ActiveScriptRuby 1.8.7.34 厂商解决方案 用户可联系厂商升级到最新版本： http://www.artonx.org/data/asr/ 或通过执行如下命令注销COM服务： regsvr32 /u...

ActiveScriptRuby vulnerable to arbitrary Ruby script execution

Overview ActiveScriptRuby contains a vulnerability where an arbitrary Ruby script may be executed on a web browser that can execute ActiveX controls when HTML is displayed. ActiveScriptRuby is a software to implement Ruby into a Windows environment. ActiveScriptRuby contains a vulnerability where...

JVN#33283707: ActiveScriptRuby vulnerable to arbitrary Ruby script execution

ActiveScriptRuby is a software to implement Ruby into a Windows environment. ActiveScriptRuby contains a vulnerability where an arbitrary Ruby script may be executed on the web browser that can execute ActiveX controls when HTML is displayed. Impact A remote attacker may be able to obtain...