EmbeddedWB Web Browser ActiveX Control Remote Code Execution Vulnerability
BID:22755
Info
EmbeddedWB Web Browser ActiveX Control Remote Code Execution Vulnerability
| Bugtraq ID: | 22755 |
| Class: | Access Validation Error |
| CVE: |
CVE-2007-1190 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 28 2007 12:00AM |
| Updated: | May 12 2015 07:34PM |
| Credit: | shinnai is credited with discovering this issue. |
| Vulnerable: |
Bsalsa EmbeddedWB Web Browser 0 |
| Not Vulnerable: | |
Discussion
EmbeddedWB Web Browser ActiveX Control Remote Code Execution Vulnerability
EmbeddedWB Web Browser ActiveX control is prone to a remote code-execution vulnerability.
Exploiting this issue allows remote attackers to execute arbitrary machine code in the context of applications using the affected ActiveX control and possibly to compromise affected computers.
EmbeddedWB Web Browser ActiveX control is prone to a remote code-execution vulnerability.
Exploiting this issue allows remote attackers to execute arbitrary machine code in the context of applications using the affected ActiveX control and possibly to compromise affected computers.
Exploit / POC
EmbeddedWB Web Browser ActiveX Control Remote Code Execution Vulnerability
The following exploit is available:
The following exploit is available:
Solution / Fix
EmbeddedWB Web Browser ActiveX Control Remote Code Execution Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
EmbeddedWB Web Browser ActiveX Control Remote Code Execution Vulnerability
References:
References:
- EmbeddedWB Web Browser (bsalsa)