This script is Copyright (C) 2013-2017 Tenable Network Security, Inc.
It is possible to execute arbitrary code on the remote host through
the Remote Desktop ActiveX control.
The remote host contains a version of the Remote Desktop ActiveX
control that is affected by a remote code execution vulnerability
when attempting to access an object in memory that has been deleted.
If an attacker can trick a user on the affected system into opening a
specially crafted webpage, this issue could be leveraged to execute
arbitrary code subject to the user's privileges.
See also :
Microsoft has released a set of patches for Windows XP, 2003, Vista,
7, 2008, and 2008 R2.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.3
Public Exploit Available : true