Embarcadero ER/Studio Data Architect ActiveX Remote Code Execution Vulnerability

Embarcadero ER/Studio Data Architect is prone to a remote code-execution vulnerability.

An attacker can exploit this issue to write files in the context of the current process which leads to arbitrary code execution within the application using the ActiveX control (typically Internet Explorer). Failed attacks will likely cause denial-of-service conditions.


 

Privacy Statement
Copyright 2010, SecurityFocus