Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
activex vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2007-2848
Stack-based buffer overflow in the SetPath function in the shComboBox ActiveX control (shcmb80.ocx) in Sky Software Shell MegaPack ActiveX 8.0 allows remote malicious users to execute arbitrary code via a long argument. NOTE: the provenance of this information is unknown; the det...
Sky Software Shell Megapack Activex 8.0
Sky Software Shcombobox Activex Control
9.3
CVSSv2
CVE-2013-7246
Buffer overflow in the IconCreate method in an ActiveX control in the DaumGame ActiveX plugin 1.1.0.4 and 1.1.0.5 allows remote malicious users to execute arbitrary code via a long string, as exploited in the wild in January 2014.
Daum Communications Daumgame Activex Control 1.1.0.5
Daum Communications Daumgame Activex Control 1.1.0.4
1 EDB exploit
6.5
CVSSv2
CVE-2019-19165
AxECM.cab(ActiveX Control) in Inogard Ebiz4u contains a vulnerability that could allow remote files to be downloaded and executed by setting arguments to the activeX method. Download of Code Without Integrity Check vulnerability in ActiveX control of Inogard Co,,LTD Ebiz4u Active...
Inogard Activex
6.8
CVSSv2
CVE-2019-12809
Yes24ViewerX ActiveX Control 1.0.327.50126 and previous versions versions contains a vulnerability that could allow remote malicious users to download and execute arbitrary files by setting the arguments to the ActiveX method. This can be leveraged for code execution.
Yes24 Viewer Activex
5
CVSSv2
CVE-2012-3819
Stack consumption vulnerability in dartwebserver.dll 1.9 and previous versions, as used in Dart PowerTCP WebServer for ActiveX and other products, allows remote malicious users to cause a denial of service (daemon crash) via a long request.
Dart Powertcp Activex -
1 EDB exploit
10
CVSSv2
CVE-2010-4742
Stack-based buffer overflow in a certain ActiveX control in MediaDBPlayback.DLL 2.2.0.5 in the Moxa ActiveX SDK allows remote malicious users to execute arbitrary code via a long PlayFileName property value.
Moxa Activex Sdk
1 EDB exploit
9.3
CVSSv2
CVE-2007-5826
Absolute path traversal vulnerability in the EDraw Flowchart ActiveX control in EDImage.ocx 2.0.2005.1104 allows remote malicious users to create or overwrite arbitrary files with arbitrary contents via a full pathname in the second argument to the HttpDownloadFile method, a diff...
Edraw Flowchart Activex
1 EDB exploit
9.3
CVSSv2
CVE-2007-0443
Multiple buffer overflows in the CDDBControl ActiveX control in Gracenote CDDB prior to 20070418 allow remote malicious users to execute arbitrary code via long values for certain Proxy configuration parameters.
Gracenote Cddbcontrol Activex Control
6.8
CVSSv2
CVE-2007-1683
Stack-based buffer overflow in the DoWebMenuAction function in the IncrediMail IMMenuShellExt ActiveX control (ImShExt.dll) allows remote malicious users to execute arbitrary code via unspecified vectors.
Incredimail Immenushellext Activex Control
2 EDB exploits
4.3
CVSSv2
CVE-2002-1795
Cross-site scripting (XSS) vulnerability in connect.asp in Microsoft Terminal Services Advanced Client (TSAC) ActiveX control allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Microsoft Tsac Activex Control
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »