GRScript18.dll before 1.2.2.0 in ActiveScriptRuby (ASR) before 1.8.7 does not properly restrict interaction with an Internet Explorer ActiveX environment, which allows remote attackers to execute arbitrary Ruby code via a crafted HTML document.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: jpcert
Published: 2012-04-16T16:00:00
Updated: 2017-12-28T21:57:01
Reserved: 2012-02-21T00:00:00
Link: CVE-2012-1241
JSON object: View
NVD Information
Status : Modified
Published: 2012-04-16T16:55:01.727
Modified: 2017-12-29T02:29:13.113
Link: CVE-2012-1241
JSON object: View
Redhat Information
No data.
CWE