vendor:
SecureTransport FileTransfer ActiveX Control
by:
aushack.com
7.5
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: SecureTransport FileTransfer ActiveX Control
Affected Version From: vcst_eu.dll 1.0.0.5
Affected Version To: vcst_eu.dll 1.0.0.5
Patch Exists: YES
Related CWE: CVE-2008-1745
CPE: a:tumbleweed_communications:securetransport_filetransfer_activex_control
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2008
Tumbleweed Communications – SecureTransport FileTransfer
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Tumbleweed Communications SecureTransport FileTransfer ActiveX Control. User interaction is required to exploit this vulnerabiliy in that the target must visit a malicious page or open a malicious file.
Mitigation:
Upgrade to the latest version of Tumbleweed Communications SecureTransport FileTransfer ActiveX Control.
