3 matches found
Design/Logic Flaw
The EdrawSoft EDOFFICE.EDOfficeCtrl.1 ActiveX control, as used in Edraw Office Viewer Component, the client in IBM Cognos Disclosure Management CDM 10.2.0, and other products, allows remote attackers to read arbitrary files, or download an arbitrary program onto a client machine and execute this...
CVE-2013-0501
The EdrawSoft EDOFFICE.EDOfficeCtrl.1 ActiveX control, as used in Edraw Office Viewer Component, the client in IBM Cognos Disclosure Management CDM 10.2.0, and other products, allows remote attackers to read arbitrary files, or download an arbitrary program onto a client machine and execute this...
CVE-2013-0501
The CVE-2013-0501 entry involves the EdrawSoft EDOFFICE.EDOfficeCtrl.1 ActiveX control (used by Edraw Office Viewer Component and IBM Cognos Disclosure Management 10.2.0). The vulnerability arises from this ActiveX control permitting a crafted web site to read arbitrary files on a client, or down...