EUVD-2007-2806

Malware in sbrugna...

EUVD-2018-11137

Malware in sbrugna...

Rockwell Automation Connected Components Workbench ActiveX Component Vulnerabilities

OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on November 6, 2014, and is being released to the NCCIC/ICS-CERT web site. Independent researcher Andrea Micalizzi working through ZDI has identified two custom ActiveX Component vulnerabilities in Rockwell...

WellinTech KingView ActiveX Vulnerabilities

OVERVIEW This advisory is a follow-up to the alert titled ICS-ALERT-13-256-01 WellinTech KingView ActiveX VulnerabilitiesICS-ALERT-13-256-01 WellinTech KingView ActiveX Vulnerabilities, http://ics-cert.us-cert.gov/alerts/ICS-ALERT-13-256-01, Web site last accessed October 22, 2013. that was...

Arc Informatique产品多个ActiveX控件漏洞

CVE ID: CVE-2011-4042,CVE-2011-4043,CVE-2011-4044,CVE-2011-4045 ARC Informatique是开发人机接口、监控和数据捕获HMI/SCADA软件的法国公司。 多个Arc Informatique产品在实现上存在多个安全漏洞，可被恶意用户利用操作某些数据并控制用户系统。 1）处理"SaveObject"和"LoadObject"方法SVUIGrd.ocx时存在的错误可被利用通过特制的"aStream"参数执行虚拟函数调用任意内存位置； 2）"GetExtendedColor"方法SVUIGrd.ocx中的错误可被利用破坏内...

SonicWALL SSL VPN Client Remote ActiveX Multiple Vulnerabilities

Absolute path traversal vulnerability in the WebCacheCleaner ActiveX control 1.3.0.3 in SonicWall SSL-VPN 200 before 2.1, and SSL-VPN 2000/4000 before 2.5, allows remote attackers to delete arbitrary files via a full pathname in the argument to the FileDelete method. CVE: CVE-2007-5815 Last...

CVE-2004-1483

Multiple unknown vulnerabilities in the ActiveX and HTML file browsers in Symantec Clientless VPN Gateway 4400 Series 5.0 have unknown attack vectors and unknown impact...

The ActiveX and HTML file browsers of the Symantec 4400 Series Clientless VPN Gateway contains various unspecified vulnerabilities

Overview The ActiveX and HTML file browsers in the Symantec Clientless VPN Gateway 4400 Series contain various unspecified vulnerabilities. Description The Symantec Clientless VPN Gateway 4400 Series is a stand-alone security appliance for connecting remote users to a trusted network via a virtua...

IBM eGatherer/IBM acpRunner ActiveX multiple bugs

Unsafe methods allows disk access and scripting...

[Full-Disclosure] Trend Micro ActiveX Multiple Overflows

Systems affected: HouseCall Trend Micros Online virus scanning service and Damage Cleanup Server version 1.0 Some history: On 06/22/03 in the "Symantec ActiveX control buffer overflow" advisory i put the next at the bottom of it: --------------------------- Important note: I recomend antivirus...

Еще одна дырка в Inexing Service из Windows 2000 (ixsso.query ActiveX)

При включенной службе Indexing Service ActiveX-компанент разрешенный для использования через Web позволяет провести поиск по локальным файлам...

CVE-1999-1575

The Kodak/Wang 1 Image Edit imgedit.ocx, 2 Image Annotation imgedit.ocx, 3 Image Scan imgscan.ocx, 4 Thumbnail Image imgthumb.ocx, 5 Image Admin imgadmin.ocx, 6 HHOpen hhopen.ocx, 7 Registration Wizard regwizc.dll, and 8 IE Active Setup setupctl.dll ActiveX controls for Internet Explorer IE 4.01...