Buffer overflow in a certain ActiveX control in ScanObjectBrowser.DLL in G DATA Antivirus 2007 might allow remote attackers to execute arbitrary code via unspecified parameters to the SelectPath function. NOTE: this issue might not cross privilege boundaries in most environments, since it is not marked as safe for scripting.
http://www.securityfocus.com/bid/26008
http://www.securityfocus.com/archive/1/482021/100/0/threaded
http://www.eleytt.com/advisories/eleytt_GDATA2007_1.pdf