RSS   Vulnerabilities for 'Instant messenger'   RSS

2008-06-04
 
CVE-2008-2551

CWE-264
 

 
The DownloaderActiveX Control (DownloaderActiveX.ocx) in Icona SpA C6 Messenger 1.0.0.1 allows remote attackers to force the download and execution of arbitrary files via a URL in the propDownloadUrl parameter with the propPostDownloadAction parameter set to "run."

 


Copyright 2024, cxsecurity.com

 

Back to Top