2 matches found
IBM and Lenovo Access Support acpRunner ActiveX Security Bypass (CVE-2007-2928; CVE-2007-2929; CVE-2007-2940)
The Access Support software package for IBM and Lenovo systems includes several ActiveX controls. A remote attacker could exploit this issue by convincing a user to visit a specially crafted HTML document or open a malicious web page. Successful exploitation could result in remote code execution ...
CVE-2007-2940
CVE-2007-2940 affects FlaP 1.0b (1.0 Beta). The vulnerability is a PHP remote file inclusion in the pachtofile parameter of skin/html/table.php and login.php, enabling remote attackers to execute arbitrary PHP code via a crafted URL. Documents do not provide exploit specifics or impacted versions...