Improper input validation in Iconics Genesis32

CVE-2014-0758

An ActiveX control in GenLaunch.htm in ICONICS GENESIS32 8.0, 8.02, 8.04, and 8.05 allows remote attackers to execute arbitrary programs via a crafted HTML document.

EPSS: 0.007 (71.8th percentile) — read the EPSS interpretation.

Affected products

Iconics Genesis32 — versions 8.0, 8.02, 8.04

Weakness classification (CWE)

References

ics-cert@hq.dhs.gov
af854a3a-2127-422b-91ae-364da2661108 (US Government Resource)