4 matches found
CVE-2008-4385
creationtimestamp| type| source ---|---|--- 2010-09-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16552 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/systemrequirementslabunsafe.rb 2025-02-06...
Instant Expert Analysis ActiveX控件任意代码下载和执行漏洞
BUGTRAQ ID: 31752 CVECAN ID: CVE-2008-4385 Instant Expert Analysis允许站点通过单击方式快速分析用户的软硬件。 Instant Expert Analysis对Firefox或Netscape浏览器使用签名的Java Applet(SRLApplet.class,由sysreqlab2.jar或sysreqlab.jar提供),对Internet Explorer使用签名的ActiveX控件(sysreqlab.dll、sysreqlabsli.dll或sysreqlab2.dll)。...
CVE-2008-4385
Husdawg, LLC System Requirements Lab ActiveX control (sysreqlab*.dll) and Java applet RLApplet.class in sysreqlab2.jar/sysreqlab.jar allow remote arbitrary code execution via an unsafe Init path. The root cause is a design that lets a malicious website trigger download and execution of arbitrary ...
Husdawg, LLC. System Requirements Lab ActiveX Unsafe Method
This module allows attackers to execute code via an unsafe method in Husdawg, LLC. System Requirements Lab ActiveX Control sysreqlab2.dll 2.30.0.0 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule...