CVE-2007-6387

The CVE-2007-6387 issue affects the awApi4.dll ActiveX control (awApi4.AnswerWorks.1, version 4.0.0.42) used by Vantage Linguistics AnswerWorks and related Intuit products. It enables remote code execution via multiple stack-based buffer overflows when long arguments are passed to methods such as...

CVE-2008-0078

CVE-2008-0078 describes a remote-code-execution vulnerability in Internet Explorer caused by an Argument Handling Memory Corruption in the ActiveX control dxtmsft.dll (IE 5.01, 6 SP1/SP2, 7). A crafted image on a malicious webpage could allow an attacker to execute arbitrary code with the privile...

CVE-2008-0551

CVE-2008-0551 documents a vulnerability in the NamoInstaller.NamoInstall.1 ActiveX control (NamoInstaller.dll, version 3.0.0.1 and earlier) used with Sejoong Namo ActiveSquare 6. The flaw allows remote attackers to trigger arbitrary code execution by passing a URL argument to the Install method. ...

CVE-2008-0470

CVE-2008-0470 involves a vulnerability in Comodo Antivirus 2.0 where a specific ActiveX control allows remote attackers to execute arbitrary commands through the ExecuteStr method. The connected documents confirm the affected product and the root cause (ActiveX control enabling remote command exe...

CVE-2008-0437

The CVE-2008-0437 issue affects the WebHPVCInstall.HPVirtualRooms14 ActiveX control (HPVirtualRooms14.dll 1.0.0.100) used in HP Virtual Rooms installation. According to the connected Nessus entry, multiple buffer-overflow vulnerabilities exist in properties such as AuthenticationURL, PortalAPIURL...