摘要
针对ActiveX漏洞被攻击者频繁地使用来攻击系统和由不安全方法引起的漏洞可能会允许远程攻击者任意地访问本地资源的问题,介绍了检查ActiveX控件中不安全漏洞的一般方法,并且使用该方法对几款国内软件进行测试,实验表明该方法能有效挖掘到不安全方法漏洞。
ActiveX vulnerabilities are frequently used by attackers. Vulnerability caused by unsafe method may allow remote attackers access arbitrary local resource. The paper proposes a general method of checking ActiveX vulnerability. The effectiveness of this method has been proved by experiments on several domestic software.
出处
《微型机与应用》
2010年第6期60-62,66,共4页
Microcomputer & Its Applications