2 matches found
CVE-2009-3737
CVE-2009-3737 concerns Oracle Siebel Option Pack for IE ActiveX control. The vulnerability stems from improper memory initialization in the NewBusObj method, enabling remote code execution via a crafted HTML document. CERT and Red Hat entries corroborate remote execution potential and provide mit...
Oracle Siebel Option Pack for IE ActiveX控件内存初始化漏洞
CVE ID: CVE-2009-3737 Siebel Option Pack for IE是Oracle Siebel CRM软件所提供的ActiveX控件。 Siebel Option Pack for IE ActiveX控件没有正确地初始化由NewBusObj方式所使用的内存,用户受骗访问了恶意网页并用特制参数调用该方式就可能导致执行任意代码。 Oracle Siebel Option Pack for IE 7.x 临时解决方法: 将以下文本保存为.REG文件并导入: Windows Registry Editor Version 5.00...