iMesh 7 'IMWebControl' ActiveX Control Code Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26916/info iMesh is prone to a code-execution vulnerability because the application fails to sanitize user-supplied data, which can lead to memory corruption. Successfully exploiting this issue allows remote attackers to...

iMesh IMWeb.IMWebControl ActiveX (IMWeb.dll) SetHandler Method Arbitrary Code Execution

The IMWeb.IMWebControl.1 ActiveX control, included with the IMesh peer-to-peer file sharing application, is installed on the remote host. It reportedly allows arbitrary command execution through its 'SetHandler' method. If a remote attacker can trick a user on the affected host into visiting a...

CVE-2007-6493

The IMWeb.IMWebControl.1 ActiveX control in IMWeb.dll 7.0.0.x, and possibly IMWebControl.dll, in iMesh 7.1.0.x and earlier allows remote attackers to execute arbitrary code via a certain argument to the SetHandler method...

Security feature bypass

The IMWeb.IMWebControl.1 ActiveX control in IMWeb.dll 7.0.0.x, and possibly IMWebControl.dll, in iMesh 7.1.0.x and earlier allows remote attackers to cause a denial of service Internet Explorer 7 crash via an empty string in the argument to the ProcessRequestEx method...

Security feature bypass

The IMWeb.IMWebControl.1 ActiveX control in IMWeb.dll 7.0.0.x, and possibly IMWebControl.dll, in iMesh 7.1.0.x and earlier allows remote attackers to execute arbitrary code via a certain argument to the SetHandler method...

CVE-2007-6492

The IMWeb.IMWebControl.1 ActiveX control in IMWeb.dll 7.0.0.x, and possibly IMWebControl.dll, in iMesh 7.1.0.x and earlier allows remote attackers to cause a denial of service Internet Explorer 7 crash via an empty string in the argument to the ProcessRequestEx method...

CVE-2007-6493

The CVE-2007-6493 issue concerns the IMWeb.IMWebControl.1 ActiveX control (IMWeb.dll 7.0.0.x and possibly IMWebControl.dll in iMesh 7.1.0.x and earlier) that allows remote code execution via a crafted argument to the SetHandler method. The vulnerability is triggered when a user visits a specially...

CVE-2007-6493

The IMWeb.IMWebControl.1 ActiveX control in IMWeb.dll 7.0.0.x, and possibly IMWebControl.dll, in iMesh 7.1.0.x and earlier allows remote attackers to execute arbitrary code via a certain argument to the SetHandler method...

iMesh 7.1.0.x - 'IMWeb.dll 7.0.0.x' Remote Heap Overflow

!-- iMesh = 7.1.0.x IMWebControl Class IMWeb.dll 7.0.0.x remote heap exploit IE7/XP full patched by rgod, site: http://retrogod.altervista.org/ software site: http://www.imesh.com "iMesh is a file sharing and online social network. It uses a proprietary, centralized, P2P protocol. iMesh is owned ...

imesh-heap.txt

!-- iMesh = 7.1.0.x IMWebControl Class IMWeb.dll 7.0.0.x remote heap exploit IE7/XP full patched by rgod, site: http://retrogod.altervista.org/ software site: http://www.imesh.com "iMesh is a file sharing and online social network. It uses a proprietary, centralized, P2P protocol. iMesh is owned ...

iMesh <= 7.1.0.x (IMWeb.dll 7.0.0.x) Remote Heap Overflow Exploit

Exploit for unknown platform in category remote exploits ================================================================= iMesh = 7.1.0.x IMWeb.dll 7.0.0.x Remote Heap Overflow Exploit ================================================================= !-- iMesh = 7.1.0.x IMWebControl Class...

iMesh 7 - &#039;IMWebControl&#039; ActiveX Control Code Execution

source: https://www.securityfocus.com/bid/26916/info iMesh is prone to a code-execution vulnerability because the application fails to sanitize user-supplied data, which can lead to memory corruption. Successfully exploiting this issue allows remote attackers to execute arbitrary code in the...

iMesh 7 - IMWebControl ActiveX Control Code Execution

iMesh 7 - IMWebControl ActiveX Control Code Execution source: https://www.securityfocus.com/bid/26916/info iMesh is prone to a code-execution vulnerability because the application fails to sanitize user-supplied data, which can lead to memory corruption. Successfully exploiting this issue allows...