Test ID:	1.3.6.1.4.1.25623.1.0.803701
Category:	Windows
Title:	Microsoft Windows ActiveX Control Multiple Vulnerabilities (2820197)
Summary:	This script will list all the vulnerable activex controls installed; on the remote windows machine with references and cause.
Description:	Summary: This script will list all the vulnerable activex controls installed on the remote windows machine with references and cause. Vulnerability Insight: The flaws are due to errors in the handling of Honeywell Enterprise Buildings Integrator, SymmetrE and ComfortPoint Open Manager ActiveX controls. Vulnerability Impact: Successful exploitation will let the remote attackers execute arbitrary code, and can compromise a vulnerable system. Affected Software/OS: - Microsoft Windows 8 - Microsoft Windows Server 2012 - Microsoft Windows XP x32 Edition Service Pack 3 and prior - Microsoft Windows XP x64 Edition Service Pack 2 and prior - Microsoft Windows 7 x32/x64 Edition Service Pack 1 and prior - Microsoft Windows 2003 x32/x64 Edition Service Pack 2 and prior - Microsoft Windows Vista x32/x64 Edition Service Pack 2 and prior - Microsoft Windows Server 2008 R2 x64 Edition Service Pack 1 and prior - Microsoft Windows Server 2008 x32/x64 Edition Service Pack 2 and prior Solution: Apply the patch Workaround: Set the killbit for the following CLSIDs, {0d080d7d-28d2-4f86-bfa1-d582e5ce4867}, {29e9b436-dfac-42f9-b209-bd37bafe9317}. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-0108 http://ics-cert.us-cert.gov/pdf/ICSA-13-053-02.pdf
Copyright	Copyright (C) 2013 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.