2 matches found
IBM and Lenovo Access Support acpRunner ActiveX Security Bypass (CVE-2007-2928; CVE-2007-2929; CVE-2007-2940)
The Access Support software package for IBM and Lenovo systems includes several ActiveX controls. A remote attacker could exploit this issue by convincing a user to visit a specially crafted HTML document or open a malicious web page. Successful exploitation could result in remote code execution ...
CVE-2007-2929
The CVE-2007-2929 issue affects the IBM/Lenovo Access Support acpRunner ActiveX control, distributed with AcpController.dll prior to version 1.2.8.0 (and possibly acpir.dll prior to 1.0.0.9). The ActiveX control exposes unsafe methods to arbitrary web domains, enabling remote attackers to downloa...