Release date: 2013-03-20
Updated on: 2013-03-21
Affected Systems:
Easewe ftp ocx ActiveX Control 4.6.02
Description:
--------------------------------------------------------------------------------
Bugtraq id: 58622
Easewe ftp ocx is an easy-to-use ftp activex component that supports all standard ftp functions.
Easewe ftp ocx 4.6.02 has multiple Insecure Methods in the implementation of EaseWeFtp. ocx. Remote attackers can exploit this vulnerability to perform unauthorized operations or execute arbitrary code to completely control the affected computers.
<* Source: Dr_IDE
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Easewe
------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://www.ftpocx.com/