Summary
This script will list all the vulnerable activex controls installed on the remote windows machine with references and cause.
Impact
Successful exploitation will let the remote attackers execute arbitrary code, and can compromise a vulnerable system.
Impact Level: System/Application
Solution
Apply the patch from below link,
http://support.microsoft.com/kb/2820197
Workaround:
Set the killbit for the following CLSIDs,
{0d080d7d-28d2-4f86-bfa1-d582e5ce4867},
{29e9b436-dfac-42f9-b209-bd37bafe9317}.
Insight
The flaws are due to errors in the handling of Honeywell Enterprise Buildings Integrator, SymmetrE and ComfortPoint Open Manager ActiveX controls.
Affected
Microsoft Windows 8
Microsoft Windows Server 2012
Microsoft Windows XP x32 Edition Service Pack 3 and prior Microsoft Windows XP x64 Edition Service Pack 2 and prior Microsoft Windows 7 x32/x64 Edition Service Pack 1 and prior Microsoft Windows 2003 x32/x64 Edition Service Pack 2 and prior Microsoft Windows Vista x32/x64 Edition Service Pack 2 and prior Microsoft Windows Server 2008 R2 x64 Edition Service Pack 1 and prior Microsoft Windows Server 2008 x32/x64 Edition Service Pack 2 and prior
References