Honeywell ScanServer ActiveX Control Use-After-Free Vulnerability
April 13, 2011
The Honeywell ScanServer ActiveX control is prone to a
remote code-execution vulnerability.
An attacker can exploit this issue by enticing an
unsuspecting user to view a malicious webpage.
Successful exploits will allow the attacker to execute
arbitrary code within the context of the application
(typically Internet Explorer) that uses the ActiveX control.
Honeywell ScanServer ActiveX control 780.0.20.5 is
vulnerable; other versions may also be affected.