Security Vulnerability Research & Defense

Recently, there was a public post in milw0rm ( http://www.milw0rm.com/exploits/5530 ), talking about an issue in the ActiveX control of Microsoft Works 7 WkImgSrv.dll. The PoC claims that it would achieve remote code execution. McAfee Avert Labs Blog

Posted by swiblog | (Comments Off)

Filed under: activex, clsid, Mitigations, attack vector, Kill-Bit

Sunday, February 03, 2008 11:17 PM

Not safe = not dangerous? How to tell if ActiveX vulnerabilities are exploitable in Internet Explorer

In early January you may have read posts on security distribution lists regarding two ActiveX Controls released by Microsoft. We have investigated those controls and fortunately, they are not exploitable since IE does not treat them as being safe. We

Posted by swiblog | (Comments Off)

Filed under: activex, clsid, classid, safe for initialization, safe for scripting, iobjectsafety

Attachment(s): ClassId.cs

Security Vulnerability Research & Defense

This Blog

Syndication

Search

News

Blogroll

Report a Vulnerability to Microsoft

Tags

Recent Posts

Archives

Browse by Tags

Why there won't be a security update for WkImgSrv.dll

Not safe = not dangerous? How to tell if ActiveX vulnerabilities are exploitable in Internet Explorer