• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Sky Software FileView ActiveX Control Remote Code Execution Vulnerability

Sky Software FileView is prone to a remote code-execution vulnerability.

Exploiting this issue allows remote attackers to execute arbitrary machine code in the context of applications using the affected ActiveX control. Attackers may be able to compromise affected computers.

Sky Software FileView is included with several applications including WinZip. Versions of WinZip in the 10.0 series prior to build 7245 are vulnerable to this issue. Other unspecified packages may also include the affected ActiveX controls.

This issue is different from the one described in BID 21060 (WinZip ActiveX Control Remote Code Execution Vulnerability).