2X Client TuxClientSystem ActiveX Control 'InstallClient()' Insecure Method Vulnerability
BID:52359
Info
2X Client TuxClientSystem ActiveX Control 'InstallClient()' Insecure Method Vulnerability
| Bugtraq ID: | 52359 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 08 2012 12:00AM |
| Updated: | Mar 08 2012 12:00AM |
| Credit: | Andrea Micalizzi |
| Vulnerable: |
2X Client TuxClientSystem ActiveX Control 10.1 Build 1224 0 |
| Not Vulnerable: |
2X Client TuxClientSystem ActiveX Control 10.1 Build 1239 0 |
Discussion
2X Client TuxClientSystem ActiveX Control 'InstallClient()' Insecure Method Vulnerability
2X Client TuxClientSystem ActiveX control is prone to a vulnerability caused by an insecure method.
Successfully exploiting this issue will allow attackers to install applications and execute arbitrary code within the context of the affected application (typically Internet Explorer) that uses the ActiveX control.
2X Client TuxClientSystem 10.1 Build 1224 is vulnerable; other versions may also be affected.
2X Client TuxClientSystem ActiveX control is prone to a vulnerability caused by an insecure method.
Successfully exploiting this issue will allow attackers to install applications and execute arbitrary code within the context of the affected application (typically Internet Explorer) that uses the ActiveX control.
2X Client TuxClientSystem 10.1 Build 1224 is vulnerable; other versions may also be affected.
Solution / Fix
2X Client TuxClientSystem ActiveX Control 'InstallClient()' Insecure Method Vulnerability
Solution:
The vendor released an update. Please see the references for details.
Solution:
The vendor released an update. Please see the references for details.
References
2X Client TuxClientSystem ActiveX Control 'InstallClient()' Insecure Method Vulnerability
References:
References:
- 2X Client TuxClientSystem Homepage (2X Client TuxClientSystem)