Honeywell Multiple Products HscRemoteDepoy.dll ActiveX Control Arbitrary Code Execution
High Nessus Plugin ID 65656
SynopsisThe remote host has an ActiveX control installed that is affected by a remote code execution vulnerability.
DescriptionThe remote host has the Honeywell 'HscRemoteDeploy.dll' ActiveX control, which is affected by a vulnerability in the 'LaunchInstaller()' function that can be utilized to execute arbitrary code by tricking a victim into opening a specially crafted HTML document.
SolutionDisable the affected ActiveX control manually, or contact Honeywell for a fix that disables it.