2 matches found
CVE-2007-2923
The CVE-2007-2923 issue concerns the LocalExec ActiveX control (LocalExec.ocx) in Novell exteNd Director 4.1 and Portal Services. The launch() method can be abused to execute arbitrary commands on the affected host. A remote attacker could exploit this by enticing a user to visit a crafted page, ...
Novell exteNd Director 4.1 LocalExec ActiveX control fails to restrict access to dangerous methods
Overview The Novell exteNd Director 4.1 LocalExec ActiveX control fails to restrict access to dangerous methods, which can allow a remote, unauthenticated attacker to execute arbitrary commands on a vulnerable system. Description Novell exteNd Director is a set of software development tools and...