Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The ThunderServer.webThunder.1 ActiveX control in xunlei Web Thunderbolt 1.7.3.109 allows remote attackers to download arbitrary files and conduct other unauthorized actions by invoking dangerous methods.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Web迅雷ThunderServer.webThunder.1 ActiveX控件任意文件下载漏洞
Vulnerability Description
Web迅雷是迅雷公司最新推出的一款基于多资源多线程技术的下载工具。 Web迅雷中所使用的ThunderServer.webThunder.1 ActiveX控件中存在安全漏洞,恶意Web站点可能利用此漏洞控制用户机器。 如果用户受骗浏览了恶意站点的话,该控件中的SetBrowserWindowData、SetConfig、HideBrowserWindow、AddTask、SearchTask和OpenFile函数就会导致下载并运行木马程序,从而完全控制用户系统。目前这个漏洞正在被积极的利用。
CVSS Information
N/A
Vulnerability Type
N/A