RSS   Vulnerabilities for 'Activescriptruby'   RSS

2012-04-16
 
CVE-2012-1241

CWE-264
 

 
GRScript18.dll before 1.2.2.0 in ActiveScriptRuby (ASR) before 1.8.7 does not properly restrict interaction with an Internet Explorer ActiveX environment, which allows remote attackers to execute arbitrary Ruby code via a crafted HTML document.

 


Copyright 2017, cxsecurity.com

 

Back to Top