cve/2013/CVE-2013-2817.md

CVE-2013-2817

Description

An ActiveX control in IcoLaunch.dll in Mitsubishi Electric Automation MC-WorX Suite 8.02 allows user-assisted remote attackers to execute arbitrary programs via a crafted HTML document in conjunction with a Login Client button click.

POC

Reference

• http://ics-cert.us-cert.gov/advisories/ICSA-14-051-02

Github

• https://github.com/ARPSyndicate/cve-scores