CVSS: 9.3EPSS: 64%CPEs: 1EXPL: 1CVE-2013-2817 – Mitsubishi MC-WorkX 8.02 - ActiveX Control 'IcoLaunch' File Execution
https://notcve.org/view.php?id=CVE-2013-2817
An ActiveX control in IcoLaunch.dll in Mitsubishi Electric Automation MC-WorX Suite 8.02 allows user-assisted remote attackers to execute arbitrary programs via a crafted HTML document in conjunction with a Login Client button click. Un control ActiveX en IcoLaunch.dll en Mitsubishi Electric Automation MC-WorX Suite 8.02 permite a atacantes remotos asistidos por usuario ejecutar programas arbitrarios a través de un documento HTML manipulado en conjunto con un click del botón Login Client. • https://www.exploit-db.com/exploits/28284 http://ics-cert.us-cert.gov/advisories/ICSA-14-051-02 http://www.meau.com/eprise/main/sites/public/Products/Software/-MC_Works • CWE-94: Improper Control of Generation of Code ('Code Injection') •