Unauthorized access is possible via ActiveX component under Windows.
vulners.com/securityvulns/securityvulns:doc:19017