CVE-2010-1912 Information

Description

The SdcWebSecureBase interface in tgctlcm.dll in Consona Live Assistance Dynamic Agent and Subscriber Assistance allows remote attackers to bypass intended restrictions on ActiveX execution via \instantiation/free attacks.\

Reference

http://wintercore.com/en/component/content/article/7-media/18-wintercore-releases-an-advisory-for-consona-products.html http://www.kb.cert.org/vuls/id/602801 http://www.securityfocus.com/archive/1/511176/100/0/threaded http://www.wintercore.com/downloads/rootedcon_0day.pdf https://exchange.xforce.ibmcloud.com/vulnerabilities/58607