- Microsoft Active-X Remote Code Execution Vulnerability
- Posted by imhotep on June 21st, 2006
Microsoft MDAC RDS.Dataspace ActiveX Control Remote Code Execution
Vulnerability
"The Microsoft MDAC RDS.Dataspace ActiveX control is vulnerable to remote
code execution. An attacker could exploit this issue to execute code in the
context of the user visiting a malicious web page."
http://www.securityfocus.com/bid/17462/discuss
Imhotep
--
*************************************
Pass a Net Neutrality Law in the US!!!!
Save the Internet:
http://www.savetheinternet.com/
Its our net:
http://www.itsournet.org/
*************************************
- Posted by Beavis on June 28th, 2006
On Tue, 20 Jun 2006 22:05:50 -0400, imhotep <inhotep@nospam.com>
wrote:
heh heh heh... he said ActiveX.
But seriously folks, I'm shocked. Shocked !!
- Posted by Sebastian Gottschalk on June 28th, 2006
Beavis wrote:
Why? Because MS Office XP Outlook Mailbox Control Build 10.0.2616.0 has
a buffer overflow, is digitally signed by Microsoft and has not been
revoked ever because it would break unpatched MS Office XP installations?
No need for joking around. ActiveX as a plugin concept is unsuitable for
non-trusted networks (like the internet) by design. There's absolutely
no need to wonder if an ActiveX control can be exploited.
