Show filters
158 Total Results
Displaying 141-150 of 158
Sort by:
Attacker Value
Unknown

CVE-2006-3890

Disclosure Date: November 21, 2006 (last updated October 04, 2023)
Stack-based buffer overflow in the Sky Software FileView ActiveX control, as used in WinZip 10 before build 7245 and in certain other applications, allows remote attackers to execute arbitrary code via a long FilePattern attribute in a WZFILEVIEW object, a different vulnerability than CVE-2006-5198.
0
0
Attacker Value
Unknown

CVE-2006-5658

Disclosure Date: November 03, 2006 (last updated October 04, 2023)
BlooMooWeb ActiveX control (AidemATL.dll) allows remote attackers to (1) download arbitrary files via a URL in the bstrUrl parameter to the BW_DownloadFile method, (2) execute arbitrary local files via a file path in the bstrParams parameter to the BW_LaunchGame method, and (3) delete arbitrary files via a file path in the filePath parameter to the BW_DeleteTempFile method.
0
0
Attacker Value
Unknown

CVE-2006-3888

Disclosure Date: October 10, 2006 (last updated October 04, 2023)
Buffer overflow in AOL You've Got Pictures (YGP) Pic Downloader YGPPDownload ActiveX control (AOL.PicDownloadCtrl.1, YGPPicDownload.dll), as used in America Online 9.0 Security Edition, allows remote attackers to execute arbitrary code via a long argument to the SetAlbumName method.
0
0
Attacker Value
Unknown

CVE-2006-3887

Disclosure Date: October 10, 2006 (last updated October 04, 2023)
Buffer overflow in AOL You've Got Pictures (YGP) Screensaver ActiveX control allows remote attackers to execute arbitrary code via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2006-4627

Disclosure Date: September 07, 2006 (last updated October 04, 2023)
System Information ActiveX control (msinfo.dll), when accessed via Microsoft Internet Explorer, allows remote attackers to cause a denial of service (crash) via a SaveFile function with a long (1) computer and possibly (2) filename and (3) category argument.
0
0
Attacker Value
Unknown

CVE-2006-4555

Disclosure Date: September 06, 2006 (last updated October 04, 2023)
Buffer overflow in the Retro64 / Miniclip CR64Loader ActiveX control allows remote attackers to execute arbitrary code via unspecified vectors involving an HTML document that references the CLSID of the control.
0
0
Attacker Value
Unknown

CVE-2006-3762

Disclosure Date: July 21, 2006 (last updated October 04, 2023)
The Touch Control ActiveX control 2.0.0.55 allows remote attackers to read and possibly execute arbitrary files via a "file///" URI in the sPath parameter to the Execute function.
0
0
Attacker Value
Unknown

CVE-2006-3423

Disclosure Date: July 07, 2006 (last updated October 04, 2023)
WebEx Downloader ActiveX Control and WebEx Downloader Java before 2.1.0.0 do not validate downloaded components, which allows remote attackers to execute arbitrary code via a website that activates the GpcUrlRoot and GpcIniFileName ActiveX controls to cause the client to download a DLL file.
0
0
Attacker Value
Unknown

CVE-2006-3424

Disclosure Date: July 07, 2006 (last updated October 04, 2023)
Multiple buffer overflows in WebEx Downloader ActiveX Control, possibly in versions before November 2005, allow remote attackers to execute arbitrary code via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2006-3391

Disclosure Date: July 06, 2006 (last updated October 04, 2023)
The Execute function in iMBCContents ActiveX Control before 2.0.0.59 allows remote attackers to execute arbitrary files via the file URI handler.
0
0
View More Topics  < Previous  Next >