CVE-2015-2096

Use-after-free vulnerability in the Connect function in the WESPMonitor.WESPMonitorCtrl.1 ActiveX control in WebGate eDVR Manager allows remote attackers to execute arbitrary code via an invalid IP address and a page reload.

BID: http://www.securityfocus.com/bid/72849
MISC: http://www.zerodayinitiative.com/advisories/ZDI-15-069/
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2096

11 years
254 countries
605k users
4053k calculations