DecisionTools SharpGrid ActiveX Control Remote Code Execution Vulnerability
BID:53437
Info
DecisionTools SharpGrid ActiveX Control Remote Code Execution Vulnerability
| Bugtraq ID: | 53437 |
| Class: | Unknown |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | May 09 2012 12:00AM |
| Updated: | May 09 2012 12:00AM |
| Credit: | Francis Provencher |
| Vulnerable: |
Palisade DecisionTools 5.7 |
| Not Vulnerable: | |
Discussion
DecisionTools SharpGrid ActiveX Control Remote Code Execution Vulnerability
DecisionTools is prone to a remote code-execution vulnerability.
Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the application (typically Internet Explorer) using the ActiveX control. Failed exploit attempts will likely result in denial-of-service conditions.
DecisionTools 5.7 is vulnerable; other versions may also be affected.
DecisionTools is prone to a remote code-execution vulnerability.
Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the application (typically Internet Explorer) using the ActiveX control. Failed exploit attempts will likely result in denial-of-service conditions.
DecisionTools 5.7 is vulnerable; other versions may also be affected.
Solution / Fix
DecisionTools SharpGrid ActiveX Control Remote Code Execution Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
DecisionTools SharpGrid ActiveX Control Remote Code Execution Vulnerability
References:
References:
- DecisionTools Homepage (Palisade)