|
|
Info |
Last Modified |
| 6 months ago |
|
|
|
|
Description |
Microsoft RDS.Dataspace ActiveX control, which is distributed with Microsoft Data Access Components, contains a flaw that may allow an attacker to execute code in the context of the user visiting a malicious web page. No further details have been provided.
|
|
Classification |
Location:
Remote/Network Access Required
Attack Type:
Input Manipulation
Impact:
Loss of Integrity
Exploit:
Exploit Available
Disclosure:
OSVDB Verified
|
|
Solution |
Microsoft has released a patch to address this issue. Additionally, it is possible to correct the flaw by implementing the following workaround(s): disable execution of activeX controls in Internet Explorer
|
|
Products |
|
MDAC
 |
2.7 |
2.8 |
2.7 SP1 |
2.5 SP3 |
2.8 SP2 |
2.8 SP1 |
|
|
|
|
|
|
Credit |
- Golan Yosef - Finjan
- Stefano Meller - Yarix
- Mirko Gatto - Yarix
|
|
BlogsProvided by Technorati
|
None found at this time
|
|
|