Arbitrary File Execution Vulnerability in ZInsVX.dll ActiveX Control

Arbitrary File Execution Vulnerability in ZInsVX.dll ActiveX Control

CVE-2019-9141 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

ZInsVX.dll ActiveX Control 2018.02 and earlier in Zoneplayer contains a vulnerability that could allow remote attackers to execute arbitrary files by setting the arguments to the ActiveX method. This can be leveraged for remote code execution.

Learn more about our Web Application Penetration Testing UK.