2 matches found
iMesh IMWeb.IMWebControl ActiveX (IMWeb.dll) SetHandler Method Arbitrary Code Execution
The IMWeb.IMWebControl.1 ActiveX control, included with the IMesh peer-to-peer file sharing application, is installed on the remote host. It reportedly allows arbitrary command execution through its 'SetHandler' method. If a remote attacker can trick a user on the affected host into visiting a...
CVE-2007-6493
The CVE-2007-6493 issue concerns the IMWeb.IMWebControl.1 ActiveX control (IMWeb.dll 7.0.0.x and possibly IMWebControl.dll in iMesh 7.1.0.x and earlier) that allows remote code execution via a crafted argument to the SetHandler method. The vulnerability is triggered when a user visits a specially...