Gigabyte: >> Dldrv2 Activex Control Security Vulnerabilities
The GIGABYTE Dldrv2 ActiveX control 1.4.206.11 allows remote attackers to (1) download arbitrary programs onto a client system, and execute these programs, via vectors involving the dl method; and (2) download arbitrary programs onto a client system via vectors involving the SetDLInfo method in conjunction with the Bdl method.
CVSS Score
10.0
EPSS Score
0.012
Published
2010-08-02
Array index error in the SetDLInfo method in the GIGABYTE Dldrv2 ActiveX control 1.4.206.11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via the item argument.
CVSS Score
10.0
EPSS Score
0.03
Published
2010-08-02