PT-2001-2246 · Rhinosoft · Ftp Voyager Activex Control

Publicado

2001-03-03

Atualizado

2017-10-10

CVE-2001-1103

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions FTP Voyager ActiveX control versions prior to 8.0

Description The issue allows remote attackers to execute arbitrary commands when the FTP Voyager ActiveX control is marked as safe for scripting, which is the default setting, or if it is allowed by the IObjectSafety interface.

Recommendations For versions prior to 8.0, update to version 8.0 or later to resolve the issue. As a temporary workaround, consider disabling the FTP Voyager ActiveX control or restricting its use to minimize the risk of exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2001-1103

Produtos afetados

Ftp Voyager Activex Control

PT-2001-2246 · Rhinosoft · Ftp Voyager Activex Control

CVE-2001-1103

Identificadores relacionados

Produtos afetados

Referências · 3