CVE-2005-3650 in First4Internet XCP DRMinfo

Summary

The CodeSupport.ocx ActiveX control, as used by Sony to uninstall the First4Internet XCP DRM, has "safe for scripting" enabled, which allows remote attackers to execute arbitrary code by calling vulnerable functions such as RebootMachine, IsAdministrator, and ExecuteCode.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

11/17/2005

Disclosure

11/17/2005

Moderation

VulDB entry created

Entries

VDB-26941 (1)

CPE

ready

CWE

CWE-94 (Confirmed)

CVSS

10.0

EPSS

0.09353

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-3650
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-3650
CVE Details	https://www.cvedetails.com/cve/CVE-2005-3650/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!