National Instruments Multiple ActiveX Controls 'cwui.ocx' Remote Code Execution Vulnerability

National Instruments' multiple ActiveX Controls are prone to a remote code-execution vulnerability caused by an insecure method.

An attacker can exploit this issue by enticing an unsuspecting user to view a malicious webpage.

Attackers can exploit this issue to overwrite arbitrary files in the context of the application (typically Internet Explorer) that is using the ActiveX controls, which may aid in a remote code execution or cause denial-of-service conditions.


 

Privacy Statement
Copyright 2010, SecurityFocus