Test ID:	1.3.6.1.4.1.25623.1.0.801225
Category:	Windows
Title:	Computer Associates WebScan ActiveX Control Multiple RCE Vulnerabilities
Summary:	CA PSFormX or WebScan ActiveX controls is prone to multiple remote code execution vulnerabilities.
Description:	Summary: CA PSFormX or WebScan ActiveX controls is prone to multiple remote code execution vulnerabilities. Vulnerability Insight: Multiple unspecified errors in the CA PSFormX and WebScan ActiveX controls, allow remote attackers to execute arbitrary code via unknown vectors. Vulnerability Impact: Successful exploitation will let the remote attackers execute arbitrary code and can compromise a vulnerable system. Affected Software/OS: PSFormX ActiveX control with CLSID {56393399-041A-4650-94C7-13DFCB1F4665} WebScan ActiveX control with CLSID {7B297BFD-85E4-4092-B2AF-16A91B2EA103} Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2193 BugTraq ID: 40494 http://www.securityfocus.com/bid/40494 BugTraq ID: 40689 http://www.securityfocus.com/bid/40689 Bugtraq: 20100609 CA20100608-01: Security Notice for CA PSFormX and WebScan ActiveX Controls (Google Search) http://www.securityfocus.com/archive/1/511764/100/0/threaded http://osvdb.org/65382 http://secunia.com/advisories/40092 XForce ISS Database: ca-psform-activex-code-execution(59293) https://exchange.xforce.ibmcloud.com/vulnerabilities/59293
Copyright	Copyright (C) 2010 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.