[Forgot Password]
Login  Register Subscribe

24128

 
 

131615

 
 

112965

 
 

909

 
 

87888

 
 

136

Paid content will be excluded from the download.


Download | Alert*
OVAL

Remote code execution vulnerability in GRScript18.dll in ActiveScriptRuby via a crafted HTML document

Deprecated
ID: oval:org.secpod.oval:def:5191Date: (C)2012-04-18   (M)2018-01-27
Class: VULNERABILITYFamily: windows




The host is installed with ActiveScriptRuby (ASR) before 1.8.7 and is prone to remote code execution vulnerability. A flaw is present in the application, which fails to properly restrict interaction with an Internet Explorer ActiveX environment. Successful exploitation could allow remote attackers to execute arbitrary Ruby code.

Platform:
Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Vista
Microsoft Windows XP
Product:
ActiveScriptRuby
Reference:
CVE-2012-1241
CVE    1
CVE-2012-1241
CPE    62
cpe:/a:artonx.org:activescriptruby:1.6.5.4
cpe:/a:artonx.org:activescriptruby:1.6.7.2
cpe:/a:artonx.org:activescriptruby:1.8.7.35
cpe:/a:artonx.org:activescriptruby:1.6.3.5
...

© SecPod Technologies