CVE-2012-5896

CVE-2012-5896 affects Quest InTrust, specifically the Annotation Objects ActiveX control (AnnotateX.dll) prior to or at 10.4.0.853. The vulnerability arises from the Add method not being properly implemented, enabling remote code execution via a memory address supplied in the first argument, tied...

CVE-2012-5897

CVE-2012-5897 affects Quest InTrust 10.4.0.853 and earlier via the ARDoc ActiveX control (ARDoc.dll). The (1) SimpleTree and (2) ReportTree classes do not properly implement the SaveToFile method, enabling remote attackers to write or overwrite arbitrary files through the bstrFileName argument. D...