Tagged: secure

VU#960193: AVG Safeguard and Secure Search ActiveX controls provides insecure methods 0

VU#960193: AVG Safeguard and Secure Search ActiveX controls provides insecure methods

Vulnerability Note VU#960193 AVG Safeguard and Secure Search ActiveX controls provides insecure methods Original Release date: 07 Jul 2014 | Last revised: 07 Jul 2014 Overview The AVG Secure Search toolbar, also known as AVG Safeguard includes an ActiveX control that provides a number of unsafe methods, which may allow a remote, unauthenticated attacker to execute arbitrary code with the privileges of the user. Description AVG Secure Search is a toolbar add-on for web browsers that “… provides an additional security layer while searching and surfing to protect you from infected websites.” One of the components provided by AVG Secure Search is an ActiveX control called ScriptHelperApi , which is provided by ScriptHelper.exe