This script is Copyright (C) 2007-2017 Tenable Network Security, Inc.
The remote Windows host has an ActiveX control that is affected by
The remote host contains the ScanCtrl ActiveX control, a part of
Nessus for Windows.
The version of the ScanCtrl ActiveX control, installed as part of
Nessus for Windows on the remote host, fails to validate input to
several methods. If an attacker can trick a user on the affected host
into visiting a specially crafted web page, this issue could be
leveraged to delete or write to arbitrary files or even execute
arbitrary code on the host subject to the user's privileges.
Upgrade to Nessus for Windows version 220.127.116.11 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.8
Public Exploit Available : true