1. Webex Meeting Manager ActiveX Control Vulnerability
(News/CERT)

... vulnerability is due to a buffer overflow condition in the "NewObject()" method within the WebexUCFObject ActiveX control (atucfobj.dll). By convincing a user to visit a specially crafted web page, o...

2. Webex Meeting Manager ActiveX Control Vulnerability
(News/CERT)

...lity is due to improper handling of arguments passed to the "NewObject()" method within the WebexUCFObject ActiveX control (atucfobj.dll). By convincing a user to visit a specially crafted web page, a...

3. RealPlayer Releases Update
(News/CERT)

...e or obtain sensitive information. RealNetworks identifies the vulnerabilities as the following:RealPlayer ActiveX controls property heap memory corruption. Local resource reference vulnerability in R...

4. Microsoft Releases Security Advisory For Snapshot Viewer ActiveX Control
(News/CERT)

Microsoft has released a Security Advisory to address a vulnerability in a Microsoft Access ActiveX control. By convincing a user to visit a specially crafted web page, a remote, unauthenticated attac

5. HP Instant Support ActiveX Control Vulnerabilities
(News/CERT)

HP has released a support document to address multiple vulnerabilities in the Instant Support ActiveX control (HPISDataManager.dll). These vulnerabilities may allow a remote attacker to execute arbitr

6. United States Tax Court Phishing Attack
(News/CERT)

...e certificate installs successfully, the browser is redirected to another page that attempts to install an ActiveX control. The user may be prompted to allow the installation, and because the control ...

7. Compromised Websites Hosting Malicious JavaScript
(News/CERT)

...d similar attacks:Regularly apply software updates and patches provided by vendors. Disable JavaScript and ActiveX as described in the Securing Your Web Browser document. For more technical informatio...

8. HP Software Update Vulnerabilities
(News/CERT)

...ulnerabilities affecting HP Software Update. These vulnerabilities are due to insecure methods in multiple ActiveX controls. Exploitation of these vulnerabilities may allow a remote attacker to execut...

9. RealPlayer Update Released
(News/CERT)

RealPlayer has released an update to address an ActiveX vulnerability. This vulnerability is due to improper handling of  multiple properties of the RealPlayer ActiveX control (rmoc3260.dll). Exp

10. Macrovision InstallShield ActiveX Vulnerability
(News/CERT)

...vulnerability in Macrovision InstallShield. This vulnerability is due to an error in the One-Click Install ActiveX control for InstallScript projects. This ActiveX control is used for loading DLL file...

11. CA BrightStor ARCserve Backup Vulnerability
(News/CERT)

...ve Backup. This vulnerability is due to a boundary error within the "AddColumn()" method in the "ListCtrl" ActiveX control. Exploitation of this vulnerability may allow a remote attacker to cause a st...

12. Search Engine IFRAME Injection Attacks
(News/CERT)

...d similar attacks:Regularly apply software updates and patches provided by vendors. Disable JavaScript and ActiveX as described in the Securing Your Web Browser document. US-CERT has seen reports of a...

13. Compromised Websites Redirect Users to Malicious Websites
(News/CERT)

...lp mitigate the risk of this and similar type attacks. Users are also encouraged to disable JavaScript and ActiveX as described in the Securing Your Web Browser document.US-CERT will provide more info...

14. Websites Compromised Through SQL Injection
(News/CERT)

...plied to the victim's system.This issue is currently exploiting a variety of vulnerabilities:Baofeng Storm ActiveX Ourgame GLChat ActiveX Microsoft Internet Explorer VML (VU#122084) Qvod Player Active...

15. RealPlayer ActiveX Vulnerability
(News/CERT)

... in RealPlayer. This vulnerability is due to improper handling of the "Console" property in the RealPlayer ActiveX control (rmoc3260.dll). Exploitation of this vulnerability may allow a remote, u...

16. Novell iPrint Client Vulnerability
(News/CERT)

....  This vulnerability is due to a buffer overflow in the"ExecuteRequest()" method of the "ienipp.ocx" ActiveX control. Exploitation of this vulnerability may allow a remote attacker to execute ar...

17. Is it safe to install ActiveX controls on my computer?
(News/Microsoft)

Learn about what ActiveX controls are, and when it's safe to download them to your computer. Read more: Recent Security at Home informationLearn about what ActiveX controls are, and when it's safe to

18. Yahoo! Music Jukebox ActiveX Buffer Overflow Vulnerabilities
(News/CERT)

...fecting Yahoo! Music Jukebox. These vulnerabilities are caused by buffer overflows in the Yahoo! MediaGrid ActiveX control and the YMP Datagrid ActiveX control. Successful exploitation of these vulner...

19. Publicly Available Exploit for Facebook and MySpace Image Uploader Vulnerability
(News/CERT)

...used by Facebook and MySpace. This vulnerability is caused by a buffer overflow in Aurigma's ImageUploader ActiveX control. Successful exploitation of this vulnerability may allow an attacker to execu...

20. Widespread SQL Injection Attacks Compromising Websites
(News/CERT)

...owing preventative measures to mitigate the security risks:Update RealPlayer to the latest version Disable ActiveX as described in the Securing Your Web Browser document US-CERT is aware of widespread...

21. HP Info Center Software Public Exploit Code
(News/CERT)

...vulnerability.To help mitigate the security risk, US-CERT recommends that users and administrators disable ActiveX and follow other best security practices as described in the Securing Your Web Browse...

22. Prevention
(Top/Antispyware)

...egitimate reason to spy on you. IE interception. The same as above, but operates within IE, to prompt for ActiveX controls and plugins. Not as needed with IE7, but still useful. Immunization, which t...