Vulnerabilities

CVE-2006-3423

by Fred · 06/07/2006

WebEx Downloader ActiveX Control and WebEx Downloader Java before 2.1.0.0 do not validate downloaded components, which allows remote attackers to execute arbitrary code via a website that activates the GpcUrlRoot and GpcIniFileName ActiveX controls to cause the client to download a DLL file.

Date published : 2006-07-06

http://www.securityfocus.com/bid/18860

http://www.securityfocus.com/archive/1/439496/100/0/threaded

Similar

Tags: Cybersecurity Alert