The (1) SetDebugging and (2) RunEgatherer methods in IBM Access Support eGatherer ActiveX control 2.0.0.16 allow remote attackers to create files with arbitrary content, as demonstrated by creating a .hta file in a Startup folder.
Max CVSS
7.5
EPSS Score
0.84%
Published
2004-12-31
Updated
2017-07-20
Stack-based buffer overflow in the IBM Access Support eGatherer ActiveX control before 3.20.0284.0 allows remote attackers to execute arbitrary code via a long filename parameter to the RunEgatherer method.
Max CVSS
9.3
EPSS Score
86.76%
Published
2006-08-18
Updated
2018-10-17
2 vulnerabilities found