VYPR

HouseCall ActiveX control

by Trend Micro

CVEs (2)

  • CVE-2008-2435Dec 23, 2008
    risk 0.01cvss epss 0.07

    Use-after-free vulnerability in the Trend Micro HouseCall ActiveX control 6.51.0.1028 and 6.6.0.1278 in Housecall_ActiveX.dll allows remote attackers to execute arbitrary code via a crafted notifyOnLoadNative callback function.

  • CVE-2008-2434Dec 23, 2008
    risk 0.01cvss epss 0.07

    The Trend Micro HouseCall ActiveX control 6.51.0.1028 and 6.6.0.1278 in Housecall_ActiveX.dll allows remote attackers to download an arbitrary library file onto a client system via a "custom update server" argument. NOTE: this can be leveraged for code execution by writing to a…