EUVD-2010-3003

Malware in sbrugna...

EUVD-2010-3107

Malware in sbrugna...

JSA10361 - Pulse Connect Secure (PCS) ActiveX client vulnerability

This isn't an active SA and this edit is part of an article maintenance project. Ivanti 04/03/2024. A malicious web site could trick an PCS users to click a link exploiting a vulnerability present in the ActiveX component of the PCS client software When using Internet Explorer to access the PCS...

CVE-2008-5002

CVE-2008-5002 affects Chilkat Crypt ActiveX Control (ChilkatCrypt2.dll 4.3.2.1). The Insecure method vulnerability allows remote creation/overwrite of arbitrary files via the WriteFile method, with potential code execution through startup-folder DLLs or hcp:// URLs. Public PoCs/exploits exist (e....

Taskpads ActiveX Control incorrectly marked safe-for-scripting

Overview The taskpads ActiveX control included with some resource kit products circa February 1999 was incorrectly marked safe-for-scripting. Description The taskpads ActiveX control included with the Microsoft Windows 98 resource kit, the Microsoft Windows 98 resource kit sampler, and the Back...

Microsoft MSN Messenger Service 1.0 Setup BBS - ActiveX Control Buffer Overflow

source: https://www.securityfocus.com/bid/668/info There is a buffer overflow in the 4.71.0.10 version of the MSN Setup BBS ActiveX control setupbbs.ocx.. This ActiveX control is marked 'Safe for Scripting' . Arbitrary commands may be executed if the ActiveX control is run in a malicious manner...