CVE-2006-6510
SiteKiosk pre-6.5.150 contains an unspecified ActiveX control labeled “safe for scripting” that can bypass protections and read arbitrary files via certain functions. This is documented across CVE-2006-6510 sources (NVD), and corroborated by the Nessus entry noting additional locally exploitable ...