2 matches found
IBM and Lenovo Access Support acpRunner ActiveX Security Bypass (CVE-2007-2928; CVE-2007-2929; CVE-2007-2940)
The Access Support software package for IBM and Lenovo systems includes several ActiveX controls. A remote attacker could exploit this issue by convincing a user to visit a specially crafted HTML document or open a malicious web page. Successful exploitation could result in remote code execution ...
CVE-2007-2928
The CVE-2007-2928 vulnerability affects the IBM/Lenovo Automated Solutions acpRunner ActiveX control (AcpController.dll) prior to v1.2.8.0 and possibly acpir.dll prior to v1.0.0.9. It exposes a format-string vulnerability that may let a remote attacker execute arbitrary code by convincing a user ...