13 matches found
EUVD-2015-2206
Malware in sbrugna...
CVE-2011-5292
The EaseWeFtp.FtpLibrary ActiveX control in EaseWeFtp.ocx in Easewe FTP OCX 4.5.0.9 does not restrict access to certain methods, which allows remote attackers to execute arbitrary files via a pathname in the first argument to the 1 Execute or 2 Run method, 3 write to arbitrary files via a pathnam...
CVE-2012-1714
Unspecified vulnerability in a TList 6 ActiveX control in Oracle Hyperion Financial Management 11.1.1.4 and 11.1.2.1.104 allows remote attackers to execute arbitrary code via unknown vectors...
Unspecified vulnerability in Kaoni ezHTTPTrans (CNVD-2021-37778)
Kaoni ezHTTPTrans is a forwarding proxy software. A security vulnerability exists in Ezhttptrans.ocx ActiveX Control in Kaoni ezHTTPTrans 1.0.0.70 and earlier versions. A remote attacker can exploit this vulnerability to download arbitrary files and execute code...
CVE-2013-5021
The CVE-2013-5021 issue affects multiple National Instruments CWUI ActiveX controls (CWNumEdit, CWGraph, CWBoolean, CWSlide, CWKnob) used in NI LabWindows/CVI 2012 SP1 and earlier, LabVIEW 2012 SP1 and earlier, and ABB DataManager Data Analysis. A root cause in the ExportStyle() method enables ab...
Quest vWorkspace 7.5 Connection Broker Client - ActiveX Control pnllmcli.dll 7.5.304.547 SaveMiniLaunchFile() Method Remote File Creation Overwrite
Quest vWorkspace 7.5 Connection Broker Client - ActiveX Control pnllmcli.dll 7.5.304.547 SaveMiniLaunchFile Method Remote File Creation Overwrite var obj = new ActiveXObject"PNLLM.Client.1"; obj.SaveMiniLaunchFile"","c:\windows\win.ini";...
Cisco AnyConnect Secure Mobility Client VPNWeb ActiveX Code Execution
Added: 06/13/2011 CVE: CVE-2011-2039 BID: 48081 OSVDB: 72714 Background Cisco AnyConnect Secure Mobility Client provides remote mobile users with secure IPsec IKEv2 or SSL Virtual Private Network VPN connections to Cisco 5500 Series Adaptive Security Appliances ASA and devices that are running...
AOL 9.1 SuperBuddy ActiveX Control remote code execution
No description provided by source. script language=vbscript Set obj = CreateObject"Sb.SuperBuddy.1" /script script language=javascript shellcode = unescape"%u03eb%ueb59%ue805%ufff8%uffff%u4949%u3749%u4949" + "%u4949%u4949%u4949%u4949%u4949%u4949%u5a51%u456a" +...
PPstream 2.6.86.8900 PPSMediaList ActiveX Remote BOF PoC (2)
No description provided by source. !-- PPStream is the most huge p2p media player in the world. There are two hundred million ppstream users in the world. The vulnerability is exploitable,but I have no time to make it,you could visit my blog for detail.^@^ welcome to http://0dayexpose.blogspot.co...
CVE-2008-4453
The GdPicture 1 Light Imaging Toolkit 4.7.1 GdPicture4S.Imaging ActiveX control gdpicture4s.ocx 4.7.0.1 and 2 Pro Imaging SDK 5.7.1 GdPicturePro5S.Imaging ActiveX control gdpicturepro5s.ocx 5.7.0.1 allows remote attackers to create, overwrite, and modify arbitrary files via the SaveAsPDF method...
Ultra Office ActiveX Control Remote Arbitrary File Corruption Exploit
No description provided by source. ----------------------------------------------------------------------------- Ultra Office ActiveX Control Remote Arbitrary File Corruption url: http://www.ultrashareware.com Author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This...
Real Player rmoc3260.dll ActiveX Control Remote Code Execution Exploit
Exploit for unknown platform in category remote exploits ====================================================================== Real Player rmoc3260.dll ActiveX Control Remote Code Execution Exploit ====================================================================== Real Player rmoc3260.dll...
KLA10252 ACE vulnerability in multiple software
A buffer overflow was found in multiple products, exploiting NCTAudioFile2.AudioFile. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed call. Original advisories - Related products...