CVE-2006-3762 Information

Description

The Touch Control ActiveX control 2.0.0.55 allows remote attackers to read and possibly execute arbitrary files via a \file///\ URI in the sPath parameter to the Execute function.

Reference

http://www.securityfocus.com/archive/1/439154/100/100/threaded