MW6 Technologies QRCode ActiveX Control Multiple Arbitrary File Overwrite Vulnerabilities

info
discussion
exploit
solution
references

MW6 Technologies QRCode ActiveX Control Multiple Arbitrary File Overwrite Vulnerabilities

MW6 Technologies QRCode ActiveX control is prone to multiple arbitrary-file-overwrite vulnerabilities.

Attackers can exploit these issues to overwrite arbitrary files on the victim's computer in the context of the vulnerable application using the ActiveX control (typically Internet Explorer).

QRCode ActiveX 3.0 is vulnerable; other versions may also be affected.