13 matches found
EUVD-2001-1084
Malware in sbrugna...
Quest InTrust 10.4.x Annotation Objects ActiveX Control AnnotateX.dll Uninitialized Pointer Remote Code Execution
No description provided by source. Quest InTrust 10.4.x Annotation Objects ActiveX Control AnnotateX.dll Uninitialized Pointer Remote Code Execution homepage: http://www.quest.com/intrust/ description: InTrust securely collects, stores, reports and alerts on event log data from Windows, Unix and...
SIEMENS Solid Edge ST4/ST5 WebPartHelper - ActiveX RFMSsvs!JShellExecuteEx Remote Code Execution
SIEMENS Solid Edge ST4/ST5 WebPartHelper ActiveX Control RFMSsvs!JShellExecuteEx Remote Command Execution Tested against: Microsoft Windows Server 2003 r2 sp2 Microsoft Windows XP sp3 Microsoft Windows 7 Internet Explorer 8 Software description: http://en.wikipedia.org/wiki/SolidEdge vendor site:...
SIEMENS Solid Edge ST4ST5 WebPartHelper - ActiveX RFMSsvs!JShellExecuteEx Remote Code Execution
SIEMENS Solid Edge ST4ST5 WebPartHelper - ActiveX RFMSsvs!JShellExecuteEx Remote Code Execution SIEMENS Solid Edge ST4/ST5 WebPartHelper ActiveX Control RFMSsvs!JShellExecuteEx Remote Command Execution Tested against: Microsoft Windows Server 2003 r2 sp2 Microsoft Windows XP sp3 Microsoft Windows...
McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 Code Execution
Exploit for windows platform in category remote exploits McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 ActiveX Control GetObject Security Bypass Remote Code Execution Vulnerability tested against: Microsoft Windows Vista sp2 Microsoft Windows 2003 r2 sp2 Internet Explorer 7/8/9 product...
2X ApplicationServer 10.1 - TuxSystem Class ActiveX Control Remote File Overwrite
2X ApplicationServer 10.1 - TuxSystem Class ActiveX Control Remote File Overwrite 2X ApplicationServer 10.1 TuxSystem Class ActiveX Control TuxScripting.dll ExportSettings Remote File Overwrite Vulnerability tested against: Microsoft Windows Server 2003 r2 sp2 Internet Explorer 8 vendor...
2X Client For RDP 10.1.1204 Download / Execute
2X Client for RDP 10.1.1204 ClientSystem Class ActiveX Control TuxClientSystem.dll InstallClient Download and Execute Vulnerability tested against: Microsoft Windows Vista SP2 Microsoft Windows Server 2003 r2 sp2 Internet Explorer 8 vendor description: "2X Software is a global leader of desktop a...
Oracle DataDirect Multiple Native Wire Protocol ODBC Drivers HOST Attribute Stack Based Buffer Overflow Vulnerability
Oracle DataDirect Multiple Native Wire Protocol ODBC Drivers HOST Attribute Stack Based Buffer Overflow Vulnerability tested against: Microsoft Windows 2k3 r2 sp2 Oracle Hyperion Performance Management and BI v11.1.2.1.0 download url of the Oracle Hyperion suite:...
gdpicture-exec.txt
var cmd = "cmd /c net user test test /add & net localgroup Administrators test /add"; var outFile = "c:\windows\pchealth\helpctr\system\errors\badurl.htm"; var BMP = "\x42\x4d\x42\x00\x0...
GdPicture Pro ActiveX (gdpicture4s.ocx) File Overwrite / Exec Exploit
Exploit for unknown platform in category remote exploits ===================================================================== GdPicture Pro ActiveX gdpicture4s.ocx File Overwrite / Exec Exploit ===================================================================== object...
GdPicture Pro - ActiveX 'gdpicture4s.ocx' File Overwrite / Exec
var cmd = "cmd /c net user test test /add & net localgroup Administrators test /add"; var outFile = "c:\windows\pchealth\helpctr\system\errors\badurl.htm"; var BMP = "\x42\x4d\x42\x00\x00\x00\x00...
Internet Explorer tblinf32.dll ActiveX IObjectsafety vulnerability
Added: 08/17/2007 CVE: CVE-2007-2216 BID: 25289 OSVDB: 36396 Background The IObjectsafety interface provides methods to get and set safety options for objects which support untrusted clients. Problem The tblinf32.dll ActiveX control implements IObjectsafety incorrectly, allowing execution of code...
CVE-2001-1103
CVE-2001-1103 concerns the FTP Voyager ActiveX control, prior to version 8.0. When flagged as safe for scripting (the default) or when permitted by the IObjectSafety interface, the control could allow remote attackers to execute arbitrary commands. The affected component is the FTP Voyager Active...