Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
activex vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-6040
Multiple unspecified vulnerabilities in the MW6 Aztec, DataMatrix, and MaxiCode ActiveX controls allow remote malicious users to execute arbitrary code via a crafted HTML document.
Mw6tech Aztec Activex Control -
Mw6tech Datamatrix Activex Control -
Mw6tech Maxicode Activex Control -
3 EDB exploits
1 Article
NA
CVE-2014-8074
Buffer overflow in the SetLogFile method in Foxit.FoxitPDFSDKProCtrl.5 in Foxit PDF SDK ActiveX 2.3 up to and including 5.0.1820 prior to 5.0.2.924 allows remote malicious users to execute arbitrary code via a long string, related to global variables.
Foxitsoftware Foxit Pdf Sdk Activex 2.3
Foxitsoftware Foxit Pdf Sdk Activex 3.0
Foxitsoftware Foxit Pdf Sdk Activex 4.0
Foxitsoftware Foxit Pdf Sdk Activex 5.0.0
Foxitsoftware Foxit Pdf Sdk Activex 5.0.1.820
NA
CVE-2011-2591
Multiple buffer overflows in the Provideo ActiveX controls allow remote malicious users to execute arbitrary code via crafted input fields, as demonstrated by (1) a long strIp argument to the voice method in 2way.dll in the alarm 1.0.3.1 ActiveX control, (2) a network response to...
Provideo Paxplayer Activex Control 3.0.0.9
Provideo Gmax Activex Control 2.0.8.2
Provideo Alarm Activex Control 3.0.0.9
NA
CVE-2008-2463
The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote malicious users to download arbitrary files to a client machine via a crafted HTML docum...
Microsoft Office Snapshot Viewer Activex Office2000
Microsoft Office Snapshot Viewer Activex Office 2003
Microsoft Office Snapshot Viewer Activex Office Xp
2 EDB exploits
NA
CVE-2004-1118
Buffer overflow in the WodFtpDLX.ocx (WeOnlyDo!) ActiveX component prior to 2.3.2.97, as used by CoffeeCup Direct FTP 6.2.0.62 and CoffeeCup Free FTP 3.0.0.10, and possibly other applications, allows remote malicious users to execute arbitrary code via a long filename.
Weonlydo Wodftpdlx Activex Component
Weonlydo Wodftpdlx Activex Component 2.1.1 8
2 EDB exploits
NA
CVE-2008-0660
Multiple stack-based buffer overflows in Aurigma Image Uploader ActiveX control (ImageUploader4.ocx) 4.6.17.0, 4.5.70.0, and 4.5.126.0, and ImageUploader5 5.0.10.0, as used by Facebook PhotoUploader 4.5.57.0, allow remote malicious users to execute arbitrary code via long (1) Ext...
Facebook Photouploader 4.5.57.0
Aurigma Image Uploader Activex Control 4.6.17.0
Aurigma Image Uploader Activex Control 5.0.10.0
Facebook Facebook
Aurigma Image Uploader Activex Control 4.5.126.0
Aurigma Image Uploader Activex Control 4.5.70.0
1 EDB exploit
NA
CVE-2007-2585
Stack-based buffer overflow in the Verify function in the BarCodeWiz ActiveX control 2.0 and 2.52 (BarcodeWiz.dll) allows remote malicious users to execute arbitrary code via a long argument.
Barcodewiz Barcode Activex Control 2.0
Barcodewiz Barcode Activex Control 2.52
2 EDB exploits
NA
CVE-2007-1722
Buffer overflow in the DownloadCertificateExt function in SignKorea SKCommAX ActiveX control module 7.2.0.2 and 3280 6.6.0.1 allows remote malicious users to execute arbitrary code via a long pszUserID argument.
Signkorea Skcommax Activex Control 7.2.0.2
Signkorea Skcommax Activex Control 6.6.0.1 3280
NA
CVE-2006-2233
Buffer overflow in BankTown Client Control (aka BtCxCtl20Com) 1.4.2.51817, and possibly 1.5.2.50209, allows remote malicious users to execute arbitrary code via a long string in the first argument to SetBannerUrl. NOTE: portions of these details are obtained from third party info...
Banktown Btcxctl20com Activex Control 1.4.2.51817
Banktown Btcxctl20com Activex Control 1.5.2.50209
1 EDB exploit
NA
CVE-2009-0865
Directory traversal vulnerability in the SnapShotToFile method in the GeoVision LiveX (aka LiveX_v8200) ActiveX control 8.1.2 and 8.2.0 in LIVEX_~1.OCX allows remote malicious users to create or overwrite arbitrary files via a .. (dot dot) in the argument, possibly involving the ...
Geovision Livex Activex Control 8.1.2.0
Geovision Livex Activex Control 8.2.0.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3012
CVE-2024-30200
XXE
CVE-2023-24955
CVE-2023-42931
CVE-2024-29231
remote code execution
cross-site scripting
CVE-2024-0677
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »