Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
activex vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2848
Stack-based buffer overflow in the SetPath function in the shComboBox ActiveX control (shcmb80.ocx) in Sky Software Shell MegaPack ActiveX 8.0 allows remote malicious users to execute arbitrary code via a long argument. NOTE: the provenance of this information is unknown; the det...
Sky Software Shell Megapack Activex 8.0
Sky Software Shcombobox Activex Control
NA
CVE-2013-7246
Buffer overflow in the IconCreate method in an ActiveX control in the DaumGame ActiveX plugin 1.1.0.4 and 1.1.0.5 allows remote malicious users to execute arbitrary code via a long string, as exploited in the wild in January 2014.
Daum Communications Daumgame Activex Control 1.1.0.5
Daum Communications Daumgame Activex Control 1.1.0.4
1 EDB exploit
7.2
CVSSv3
CVE-2019-19165
AxECM.cab(ActiveX Control) in Inogard Ebiz4u contains a vulnerability that could allow remote files to be downloaded and executed by setting arguments to the activeX method. Download of Code Without Integrity Check vulnerability in ActiveX control of Inogard Co,,LTD Ebiz4u Active...
Inogard Activex
8.8
CVSSv3
CVE-2019-12809
Yes24ViewerX ActiveX Control 1.0.327.50126 and previous versions versions contains a vulnerability that could allow remote malicious users to download and execute arbitrary files by setting the arguments to the ActiveX method. This can be leveraged for code execution.
Yes24 Viewer Activex
NA
CVE-2007-5826
Absolute path traversal vulnerability in the EDraw Flowchart ActiveX control in EDImage.ocx 2.0.2005.1104 allows remote malicious users to create or overwrite arbitrary files with arbitrary contents via a full pathname in the second argument to the HttpDownloadFile method, a diff...
Edraw Flowchart Activex
1 EDB exploit
NA
CVE-2012-3819
Stack consumption vulnerability in dartwebserver.dll 1.9 and previous versions, as used in Dart PowerTCP WebServer for ActiveX and other products, allows remote malicious users to cause a denial of service (daemon crash) via a long request.
Dart Powertcp Activex -
1 EDB exploit
NA
CVE-2010-4742
Stack-based buffer overflow in a certain ActiveX control in MediaDBPlayback.DLL 2.2.0.5 in the Moxa ActiveX SDK allows remote malicious users to execute arbitrary code via a long PlayFileName property value.
Moxa Activex Sdk
1 EDB exploit
NA
CVE-2007-4982
Multiple absolute path traversal vulnerabilities in the MW6QRCode.QRCode.1 ActiveX control in MW6QRCode.dll in MW6 Technologies QRCode ActiveX 3.0.0.1 and previous versions allow remote malicious users to create or overwrite arbitrary files via a full pathname in the argument to ...
Mw6 Technologies Qrcode Activex
1 EDB exploit
NA
CVE-2007-1683
Stack-based buffer overflow in the DoWebMenuAction function in the IncrediMail IMMenuShellExt ActiveX control (ImShExt.dll) allows remote malicious users to execute arbitrary code via unspecified vectors.
Incredimail Immenushellext Activex Control
2 EDB exploits
NA
CVE-2007-0827
The Alibaba Alipay PTA Module ActiveX control (PTA.DLL) allows remote malicious users to execute arbitrary code via a JavaScript function that invokes the Remove method with an invalid index argument, which is used as an offset for a function call.
Alibaba Alipay Activex Control
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »