This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.
Arbitrary code can be executed on the remote host through the web
The remote host is running a version of Windows which contains a flaw
in the DHTML Editing Component ActiveX Control.
An attacker could exploit this flaw to execute arbitrary code on the
To exploit this flaw, an attacker would need to construct a malicious
web page and lure a victim into visiting it.
See also :
Microsoft has released a set of patches for Windows 2000, XP and
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.7
Public Exploit Available : true