BugTraq
Borland Silk Central 12.1 TeeChart Pro Activex control AddSeries Remote Code Execution Apr 25 2013 02:43AM
nospam gmail it
Borland Silk Central 12.1 TeeChart Pro Activex control AddSeries Remote Code Execution

ActiveX Settings:
Binary path: C:\Program Files\Silk\Shared Files\teechart.ocx
CLSID: {008BBE7E-C096-11D0-B4E3-00A0C901D681}
ProgID: TeeChart.TChart
Version: 4.0.0.7
Safe for Scripting (IObjectSafety): True
Safe for Initialization (IObjectSafety): True

AddSeries method is vulnerable, see http://www.osvdb.org/show/osvdb/74446

//rgod

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus