3 matches found
Internet Explorer COM CreateObject Code Execution
No description provided by source. $Id: iecreateobject.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...
ZDI-06-047: Microsoft Visual Studio WmiScriptUtils.dll Cross-Zone Scripting Vulnerability
ZDI-06-047: Microsoft Visual Studio WmiScriptUtils.dll Cross-Zone Scripting Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-047.html December 12, 2006 -- CVE ID: CVE-2006-4704 -- Affected Vendor: Microsoft -- Affected Products: Visual Studio 2005 Standard Edition Visual Studio 20...
CVE-2006-4704
CVE-2006-4704 is a cross-zone scripting vulnerability in the WMIScriptUtils.WMIObjectBroker2 ActiveX control (WmiScriptUtils.dll) shipped with Visual Studio 2005. The flaw allows a remote attacker to bypass Internet Explorer zone restrictions and execute arbitrary code by instantiating dangerous ...