Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
activex vulnerabilities and exploits
(subscribe to this query)
935
VMScore
CVE-2007-4067
Absolute path traversal vulnerability in the clInetSuiteX6.clWebDav ActiveX control in CLINETSUITEX6.OCX in Clever Internet ActiveX Suite 6.2 allows remote malicious users to create or overwrite arbitrary files via a full pathname in the second argument to the GetToFile method. N...
Clever Components Internet Activex Suite
1 EDB exploit
828
VMScore
CVE-2013-2602
Multiple array index errors in the MyHeritage SEQueryObject ActiveX control (SearchEngineQuery.dll) 1.0.2.0 allow remote malicious users to execute arbitrary code via the (1) seTokensArray, or (2) seTokensValuesArray parameter to the AddTokens method; (3) seLastNameTokensArray pa...
Myheritage Sequeryobject Activex Control 1.0.2.0
755
VMScore
CVE-2007-2814
Multiple stack-based buffer overflows in the Pegasus ImagN' ActiveX control (IMW32O40.OCX) 4.00.041 allow remote malicious users to execute arbitrary code via (1) a long FileName parameter, or unspecified vectors involving the (2) BeginReport, (3) CreatePictureExA, (4) Defin...
Pegasus Imagn Activex Control 4.00.041
1 EDB exploit
885
VMScore
CVE-2009-4453
Insecure method vulnerability in SoftCab Sound Converter ActiveX control (sndConverter.ocx) 1.2 allows remote malicious users to create or overwrite arbitrary files via the SaveFormat method. NOTE: some of these details are obtained from third party information.
Softcab Sound Converter Activex 1.2
1 EDB exploit
945
VMScore
CVE-2010-2932
Buffer overflow in BarCodeWiz BarCode 3.29 ActiveX control (BarcodeWiz.dll) allows remote malicious users to execute arbitrary code via a long argument to the LoadProperties method.
Barcodewiz Barcode Activex Control 3.29
3 EDB exploits
445
VMScore
CVE-2012-5389
NULL Pointer Dereference in PowerTCP WebServer for ActiveX 1.9.2 and previous versions allows remote malicious users to cause a denial of service (application crash) via a crafted HTTP request.
Dart Powertcp Webserver For Activex
935
VMScore
CVE-2009-3658
Use-after-free vulnerability in the Sb.SuperBuddy.1 ActiveX control (sb.dll) in America Online (AOL) 9.5.0.1 allows remote malicious users to trigger memory corruption or possibly execute arbitrary code via a malformed argument to the SetSuperBuddy method.
Aol Superbuddy Activex Control 9.5.0.1
1 EDB exploit
890
VMScore
CVE-2010-1518
Array index error in the SetDLInfo method in the GIGABYTE Dldrv2 ActiveX control 1.4.206.11 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via the item argument.
Gigabyte Dldrv2 Activex Control 1.4.206.11
445
VMScore
CVE-2011-0329
Directory traversal vulnerability in the GetData method in the Dell DellSystemLite.Scanner ActiveX control in DellSystemLite.ocx 1.0.0.0 allows remote malicious users to read arbitrary files via directory traversal sequences in the fileID parameter.
Dell Dellsystemlite.scanner Activex Control 1.0.0.0
828
VMScore
CVE-2011-0331
Use-after-free vulnerability in the addOSPLext method in the Honeywell ScanServer ActiveX control 780.0.20.5 allows remote malicious users to execute arbitrary code via a crafted HTML document.
Honeywell Scanserver Activex Control 780.0.20.5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »