CWE-623: Unsafe ActiveX Control Marked Safe For Scripting

Description

An ActiveX control is intended for restricted use, but it has been marked as safe-for-scripting.

Submission Date :

May 7, 2007, midnight

Modification Date :

2023-06-29 00:00:00+00:00

Organization :

MITRE
Extended Description

This might allow attackers to use dangerous functionality via a web page that accesses the control, which can lead to different resultant vulnerabilities, depending on the control's behavior.

Related Weaknesses

This table shows the weaknesses and high level categories that are related to this weakness. These relationships are defined to give an overview of the different insight to similar items that may exist at higher and lower levels of abstraction.

CWE-267: Privilege Defined With Unsafe Actions
Go to
CWE-618: Exposed Unsafe ActiveX Method
Go to

Visit http://cwe.mitre.org/ for more details.

© cvefeed.io
Latest DB Update: Nov. 21, 2024 21:07