Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Kaoni ezHTTPTrans Active-X File Download and Execution Vulnerability
Vulnerability Description
Ezhttptrans.ocx ActiveX Control in Kaoni ezHTTPTrans 1.0.0.70 and prior versions contain a vulnerability that could allow remote attacker to download arbitrary file by setting the arguments to the activex method. This can be leveraged for code execution by rebooting the victim’s PC.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
下载代码缺少完整性检查
Vulnerability Title
Kaoni ezHTTPTrans 安全漏洞
Vulnerability Description
Kaoni ezHTTPTrans 1.0.0.70及之前版本中的Ezhttptrans.ocx ActiveX Control存在安全漏洞。远程攻击者可利用该漏洞下载任意文件,执行代码。
CVSS Information
N/A
Vulnerability Type
N/A