This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.
The remote Windows host has an ActiveX control that is affected by a
remote code execution vulnerability.
The version of the KWEdit ActiveX control on the remote host is
reportedly affected by a remote code execution vulnerability. The
control provides the insecure method 'SaveDocumentAs()', which saves
an HTML document to a specified location. This can be exploited in
combination with e.g. the 'OpenDocument()' method to disclose file
contents or to execute arbitrary code on the affected host subject to
the user's privileges.
See also :
Upgrade to the latest version and verify the kill bit is set.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.4
Public Exploit Available : true