4 matches found
CVE-2005-3650
The CodeSupport.ocx ActiveX control, as used by Sony to uninstall the First4Internet XCP DRM, has "safe for scripting" enabled, which allows remote attackers to execute arbitrary code by calling vulnerable functions such as RebootMachine, IsAdministrator, and ExecuteCode...
CVE-2005-3650
The CVE-2005-3650 entry concerns the CodeSupport.ocx ActiveX control used by Sony to uninstall First4Internet XCP DRM. The vulnerability arises because the control’s “safe for scripting” setting enables remote attackers to call vulnerable methods (e.g., RebootMachine, IsAdministrator, ExecuteCode...
CVE-2005-3650
The CodeSupport.ocx ActiveX control, as used by Sony to uninstall the First4Internet XCP DRM, has "safe for scripting" enabled, which allows remote attackers to execute arbitrary code by calling vulnerable functions such as RebootMachine, IsAdministrator, and ExecuteCode...
First4Internet XCP Uninstallation CodeSupport.ocx ActiveX Control Arbitrary Code Execution
The remote host contains an ActiveX control from First4Internet called CodeSupport. This control was likely installed by requesting an uninstaller for Sony's XCP digital rights management software. CodeSupport is marked as safe for scripting and makes several methods available for any web page to...