4 matches found
MS KB953839: Cumulative Security Update of ActiveX Kill Bits
The remote host is missing a list of kill bits for ActiveX controls that are known to contain vulnerabilities. If these ActiveX controls are ever installed on the remote host, either now or in the future, they would expose it to various security issues. %NASLMINLEVEL 70300 C Tenable Network...
HP Online Support Services ActiveX ExtractCab() buffer overflow
Overview HP Online Support Services contains the function ExtractCab, which can be exploited to cause a buffer overflow. This may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system in the context of the local user. Description HP Services provides online...
Buffer overflow
Buffer overflow in the GetFileTime function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to execute arbitrary code via a long argument, a different vulnerability than CVE-2007-5604, CVE-2007-5606, and...
CVE-2007-5606
HP Instant Support’s HPISDataManager.dll ActiveX control contains MoveFile() in the HPISDataManager, a buffer overflow that can be exploited by a remote attacker to execute arbitrary code. Public details indicate exploitation requires convincing a user to visit a malicious page to trigger the vul...