SystemSoft SystemWizard package in HP Pavilion PC with Windows 98, and possibly other platforms and operating systems, installs two ActiveX controls that are marked as safe for scripting, which allows remote attackers to execute arbitrary commands via a malicious web page that references (1) the Launch control, or (2) the RegObj control.
References
Link | Resource |
---|---|
http://marc.info/?l=bugtraq&m=93336970231857&w=2 | |
http://www.securityfocus.com/bid/555 | |
http://www.systemsoft.com/l-2/l-3/support-systemwizard.htm | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2001-09-12T04:00:00
Updated: 2016-10-17T13:57:01
Reserved: 2001-08-31T00:00:00
Link: CVE-1999-1206
JSON object: View
NVD Information
Status : Modified
Published: 1999-12-31T05:00:00.000
Modified: 2016-10-18T02:02:19.047
Link: CVE-1999-1206
JSON object: View
Redhat Information
No data.
CWE