Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The default configuration of pluginlicense.ini for the SdcWebSecureBase interface in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance, when downloaded from a server operated by Telefonica or possibly other companies, contains an incorrect DNS whitelist that includes the DNS hostnames of home computers of many persons, which allows remote attackers to bypass intended restrictions on ActiveX execution by hosting an ActiveX control on an applicable home web server.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Consona 多个产品'tgctlcm.dll'配置错误漏洞
Vulnerability Description
Consona是全球领先的企业应用解决方案和服务供应商,为各种规模的企业提供信息化服务。 Dynamic Security Agent (DSA)是一个主机防护软件。它无需特征码,是桌面级的恶意软件防护程序。 Consona Live Assistance, Dynamic Agent, 和 Subscriber Assistance的tgctlcm.dll中,当从Telefonica或其它公司服务器上下载SdcWebSecureBase接口的默认pluginlicense.ini配置时,会包含错误的DN
CVSS Information
N/A
Vulnerability Type
N/A