EUVD-2007-4403

Malware in sbrugna...

Word Viewer OCX 3.2 - Remote Denial of Service Exploit

No description provided by source. span style=font: 14pt Courier New;p align=centerb2007/05/03/b/p/span pre codespan style=font: 10pt Courier New;span class=general1-symbol----------------------------------------------------------------------------- bWordViewer.ocx v. 3.2.0.5 multiple methods...

CVE-2010-1908

The SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance does not properly restrict access to the HTTPDownloadFile, HTTPGetFile, Install, and RunCmd methods, which allows remote attackers to execute arbitrary programs via a URL in th...

CVE-2010-1908

The SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance does not properly restrict access to the HTTPDownloadFile, HTTPGetFile, Install, and RunCmd methods, which allows remote attackers to execute arbitrary programs via a URL in th...

VulnCheck KEV: CVE-2007-2496

The WordOCX ActiveX control in WordViewer.ocx 3.2.0.5 allows remote attackers to cause a denial of service Internet Explorer 7 crash via a long 1 DoOleCommand, 2 FTPDownloadFile, 3 FTPUploadFile, 4 HttpUploadFile, 5 GotoPage, 6 Save, 7 SaveWebFile, 8 HttpDownloadFile, 9...

EDraw Office Viewer 5.4 HttpDownloadFile() Insecure Method Vuln

No description provided by source. Edraw Office Viewer Component v5.4 HttpDownloadFile Insecure Method Founded By : Cyber-Zone E-mail : [email protected] Home : WwW.Exploiter5.CoM GreetZ : Houssamix , Hussin X , JiKo , StaCk , str0ke , The5p3ctrum , BayHay , All Mgharba Wahed wahed Oujda...

EDraw Office Viewer 5.4 Insecure Method

Edraw Office Viewer Component v5.4 HttpDownloadFile Insecure Method Founded By : Cyber-Zone E-mail : [email protected] Home : WwW.Exploiter5.CoM GreetZ : Houssamix , Hussin X , JiKo , StaCk , str0ke , The5p3ctrum , BayHay , All Mgharba Wahed wahed Oujda 2009 Sub tryMe On Error Resume Next...

EDraw Office Viewer 5.4 - 'HttpDownloadFile()' Insecure Method

Edraw Office Viewer Component v5.4 HttpDownloadFile Insecure Method Founded By : Cyber-Zone E-mail : [email protected] Home : WwW.Exploiter5.CoM GreetZ : Houssamix , Hussin X , JiKo , StaCk , str0ke , The5p3ctrum , BayHay , All Mgharba Wahed wahed Oujda 2009 Sub tryMe On Error Resume Next...

EDraw Office Viewer 5.4 - HttpDownloadFile() Insecure Method

EDraw Office Viewer 5.4 - HttpDownloadFile Insecure Method Edraw Office Viewer Component v5.4 HttpDownloadFile Insecure Method Founded By : Cyber-Zone E-mail : [email protected] Home : WwW.Exploiter5.CoM GreetZ : Houssamix , Hussin X , JiKo , StaCk , str0ke , The5p3ctrum , BayHay , All...

EDraw Office Viewer 5.4 HttpDownloadFile() Insecure Method Vuln

Exploit for unknown platform in category remote exploits =============================================================== EDraw Office Viewer 5.4 HttpDownloadFile Insecure Method Vuln =============================================================== Sub tryMe On Error Resume Next test.HttpDownloadFi...

ExcelOCX ActiveX 3.2 (Download File) Insecure Method Exploit

Exploit for unknown platform in category remote exploits ============================================================ ExcelOCX ActiveX 3.2 Download File Insecure Method Exploit ============================================================ / --=0-0-000000000--x==-xxxxxxxxx - Excel Viewer OCX 3.2...

CVE-2008-5404

Insecure method vulnerability in the FlexCell.Grid ActiveX control in FlexCell.ocx 5.7.0.1 in FlexCell Grid ActiveX Component allows remote attackers to create and overwrite arbitrary files via the HttpDownloadFile method. NOTE: this could be leveraged for code execution by creating executable...

Design/Logic Flaw

Insecure method vulnerability in the FlexCell.Grid ActiveX control in FlexCell.ocx 5.7.0.1 in FlexCell Grid ActiveX Component allows remote attackers to create and overwrite arbitrary files via the HttpDownloadFile method. NOTE: this could be leveraged for code execution by creating executable...

FlexCell Grid Control ActiveX Arbitrary File Overwrite Vulnerability

This host is installed with FlexCell Grid Control ActiveX and is prone to arbitrary File Overwrite vulnerability. OpenVAS Vulnerability Test $Id: secpodflexcellactivexfileoverwrirevuln900406.nasl 5370 2017-02-20 15:24:26Z cfi $ Description: FlexCell Grid Control ActiveX Arbitrary File Overwrite...

FlexCell Grid ActiveX控件任意文件覆盖漏洞

BUGTRAQ ID: 32443 FlexCell Grid ActiveX控件是一款表格控制工具，提供拷贝、拷贝预览、图表、合并单元格等全面功能。 FlexCell Grid ActiveX控件（FlexCell.ocx）没有正确地验证对HttpDownloadFile方式的输入参数，如果远程攻击者受骗访问了恶意网站并向该方式传送了特制参数的话，就可能导致以当前登录用户的权限覆盖任意系统文件。 FlexCell Technologies FlexCell Grid ActiveX 5.7.0.1 FlexCell Technologies ---------------------...

Path traversal

Absolute path traversal vulnerability in the EDraw Flowchart ActiveX control in EDImage.ocx 2.0.2005.1104 allows remote attackers to create or overwrite arbitrary files with arbitrary contents via a full pathname in the second argument to the HttpDownloadFile method, a different product than...

CVE-2007-5826

Absolute path traversal vulnerability in the EDraw Flowchart ActiveX control in EDImage.ocx 2.0.2005.1104 allows remote attackers to create or overwrite arbitrary files with arbitrary contents via a full pathname in the second argument to the HttpDownloadFile method, a different product than...

CVE-2007-5826

CVE-2007-5826 describes an absolute path traversal in the EDraw Flowchart ActiveX control (EDImage.ocx 2.0.2005.1104). The vulnerability allows remote attackers to create or overwrite arbitrary files with arbitrary contents by passing a full pathname as the second argument to the HttpDownloadFile...

CVE-2007-5826

Absolute path traversal vulnerability in the EDraw Flowchart ActiveX control in EDImage.ocx 2.0.2005.1104 allows remote attackers to create or overwrite arbitrary files with arbitrary contents via a full pathname in the second argument to the HttpDownloadFile method, a different product than...

EDraw Flowchart ActiveX Control 2.0 Insecure Method Exploit

No description provided by source. pre codespan style="font: 10pt Courier New;"span class="general1-symbol"body bgcolor="E0E0E0"----------------------------------------------------------------------------------------------------- bEDraw Flowchart ActiveX Control EDImage.ocx v. 2.0.2005.1104...