ID CVE-2013-6040
Summary Multiple unspecified vulnerabilities in the MW6 Aztec, DataMatrix, and MaxiCode ActiveX controls allow remote attackers to execute arbitrary code via a crafted HTML document.
References
Vulnerable Configurations
  • mw6tech Aztec ActiveX Control
    cpe:2.3:a:mw6tech:aztec_activex_control
  • mw6tech DataMatrix ActiveX Control
    cpe:2.3:a:mw6tech:datamatrix_activex_control
  • mw6tech MaxiCode ActiveX Control
    cpe:2.3:a:mw6tech:maxicode_activex_control
CVSS
Base: 9.3 (as of 07-08-2015 - 11:27)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
exploit-db via4
  • description MW6 Technologies MaxiCode ActiveX (Data param) - Buffer Overflow. CVE-2013-6040. Dos exploit for windows platform
    id EDB-ID:31178
    last seen 2016-02-03
    modified 2014-01-24
    published 2014-01-24
    reporter Pedro Ribeiro
    source https://www.exploit-db.com/download/31178/
    title MW6 Technologies MaxiCode ActiveX Data param - Buffer Overflow
  • description MW6 Technologies Aztec ActiveX (Data param) - Buffer Overflow. CVE-2013-6040. Dos exploit for windows platform
    file exploits/windows/dos/31176.html
    id EDB-ID:31176
    last seen 2016-02-03
    modified 2014-01-24
    platform windows
    port
    published 2014-01-24
    reporter Pedro Ribeiro
    source https://www.exploit-db.com/download/31176/
    title MW6 Technologies Aztec ActiveX Data param - Buffer Overflow
    type dos
  • description MW6 Technologies DataMatrix - ActiveX (Data param) - Buffer Overflow. CVE-2013-6040. Dos exploit for windows platform
    file exploits/windows/dos/31177.html
    id EDB-ID:31177
    last seen 2016-02-03
    modified 2014-01-24
    platform windows
    port
    published 2014-01-24
    reporter Pedro Ribeiro
    source https://www.exploit-db.com/download/31177/
    title MW6 Technologies DataMatrix - ActiveX Data param - Buffer Overflow
    type dos
nessus via4
NASL family Windows
NASL id MW6_ACTIVEX_VU219470.NASL
description The remote Windows host has one or more ActiveX controls from MW6 Technologies ActiveX controls that are affected by multiple buffer overflow vulnerabilities. Specifically, these involve the 'Data' parameter as used in the Aztec, DataMatrix, and MaxiCode controls, and successful exploitation could lead to arbitrary code execution.
last seen 2019-02-21
modified 2018-11-15
plugin id 72179
published 2014-01-28
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=72179
title MW6 Technologies ActiveX Multiple Buffer Overflows
refmap via4
cert-vn VU#219470
exploit-db
  • 31176
  • 31177
the hacker news via4
id THN:2B66F4D7468A397BC1CBE217545C45C8
last seen 2017-01-08
modified 2013-03-02
published 2013-03-02
reporter Mohit Kumar
source http://thehackernews.com/2013/03/old-school-hackers-spying-on-european.html
title Old School Hackers spying on European governments
Last major update 07-08-2015 - 13:41
Published 20-01-2014 - 20:55
Back to Top