Black Ice Cover Page ActiveX Control Arbitrary File Download

0
48

This Metasploit module allows remote attackers to place arbitrary files on a users file system by abusing the “DownloadImageFileURL” method in the Black Ice BIImgFrm.ocx ActiveX Control (BIImgFrm.ocx 12.0.0.0).

Source: Black Ice Cover Page ActiveX Control Arbitrary File Download