cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2008-2463,https://securityvulnerability.io/vulnerability/CVE-2008-2463,,"The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attackers to download arbitrary files to a client machine via a crafted HTML document or e-mail message, probably involving use of the SnapshotPath and CompressedPath properties and the PrintSnapshot method. NOTE: this can be leveraged for code execution by writing to a Startup folder.",Microsoft,Office Snapshot Viewer Activex,,,0.9714900255203247,false,false,false,false,,false,false,2008-07-07T23:41:00.000Z,0
CVE-2008-0078,https://securityvulnerability.io/vulnerability/CVE-2008-0078,,"Unspecified vulnerability in an ActiveX control (dxtmsft.dll) in Microsoft Internet Explorer 5.01, 6 SP1 and SP2, and 7 allows remote attackers to execute arbitrary code via a crafted image, aka ""Argument Handling Memory Corruption Vulnerability.""",Microsoft,"Ie,Internet Explorer,Activex",,,0.9308199882507324,false,false,false,false,,false,false,2008-02-12T22:00:00.000Z,0
CVE-2008-0379,https://securityvulnerability.io/vulnerability/CVE-2008-0379,,"Race condition in the Enterprise Tree ActiveX control (EnterpriseControls.dll 11.5.0.313) in Crystal Reports XI Release 2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the SelectedSession method, which triggers a buffer overflow.",Microsoft,"Activex,Crystal Reports Xi",,,0.08126000314950943,false,false,false,false,,false,false,2008-01-22T19:00:00.000Z,0
CVE-2008-0235,https://securityvulnerability.io/vulnerability/CVE-2008-0235,,The Microsoft VFP_OLE_Server ActiveX control allows remote attackers to execute arbitrary code by invoking the foxcommand method.,Microsoft,Vfp Ole Server Activex Control,,,0.2969200015068054,false,false,false,false,,false,false,2008-01-11T02:00:00.000Z,0
CVE-2007-6387,https://securityvulnerability.io/vulnerability/CVE-2007-6387,,"Multiple stack-based buffer overflows in the awApi4.AnswerWorks.1 ActiveX control in awApi4.dll 4.0.0.42, as used by Vantage Linguistics AnswerWorks, and Intuit Clearly Bookkeeping, ProSeries, QuickBooks, Quicken, QuickTax, and TurboTax, allow remote attackers to execute arbitrary code via long arguments to the (1) GetHistory, (2) GetSeedQuery, (3) SetSeedQuery, and possibly other methods.  NOTE: some of these details are obtained from third party information.",Microsoft,"Activex,Bookkeeping,Quicktax,Proseries,Quicken,Answerworks,Turbo Tax,Quickbooks",,,0.5137699842453003,false,false,false,false,,false,false,2007-12-15T02:00:00.000Z,0
CVE-2007-3282,https://securityvulnerability.io/vulnerability/CVE-2007-3282,,Buffer overflow in the Microsoft Office MSODataSourceControl ActiveX object allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long argument to the DeleteRecordSourceIfUnused method.,Microsoft,"Office,Office Msodatasourcecontrol Activex",,,0.16978000104427338,false,false,false,false,,false,false,2007-06-19T22:00:00.000Z,0
CVE-2007-3111,https://securityvulnerability.io/vulnerability/CVE-2007-3111,,"Buffer overflow in the Provideo Camimage ActiveX control in ISSCamControl.dll 1.0.1.5, when Internet Explorer 6 is used on Windows 2000 SP4, allows remote attackers to execute arbitrary code via a long URL property value.",Microsoft,"Internet Explorer,Camimage Activex Control",,,0.4029900133609772,false,false,false,false,,false,false,2007-06-07T21:00:00.000Z,0
CVE-2006-4627,https://securityvulnerability.io/vulnerability/CVE-2006-4627,,"System Information ActiveX control (msinfo.dll), when accessed via Microsoft Internet Explorer, allows remote attackers to cause a denial of service (crash) via a SaveFile function with a long (1) computer and possibly (2) filename and (3) category argument.",Microsoft,System Information Activex Control,,,0.020400000736117363,false,false,false,false,,false,false,2006-09-07T21:04:00.000Z,0
CVE-2005-0360,https://securityvulnerability.io/vulnerability/CVE-2005-0360,,"The Microsoft Log Sink Class ActiveX control in pkmcore.dll is marked as ""safe for scripting"" for Internet Explorer, which allows remote attackers to create or append to arbitrary files.",Microsoft,Log Sink Class Activex Control,,,0.003060000017285347,false,false,false,false,,false,false,2005-07-05T04:00:00.000Z,0
CVE-2002-1795,https://securityvulnerability.io/vulnerability/CVE-2002-1795,,Cross-site scripting (XSS) vulnerability in connect.asp in Microsoft Terminal Services Advanced Client (TSAC) ActiveX control allows remote attackers to inject arbitrary web script or HTML via unknown vectors.,Microsoft,Tsac Activex Control,,,0.010859999805688858,false,false,false,false,,false,false,2002-12-31T05:00:00.000Z,0
CVE-2002-0726,https://securityvulnerability.io/vulnerability/CVE-2002-0726,,Buffer overflow in Microsoft Terminal Services Advanced Client (TSAC) ActiveX control allows remote attackers to execute arbitrary code via a long server name field.,Microsoft,Tsac Activex Control,,,0.03844999894499779,false,false,false,false,,false,false,2002-09-24T04:00:00.000Z,0