Agilent Technologies Feature Extraction ActiveX Exploit

The specific flaw exists within the AnnotateX dll ActiveX control included with the software. An attacker can use an unvalidated object parameter in the Insert() function to execute arbitrary code in the context of the browser.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2015-2092
Product Version: 
2014_R2
Released Date: 
Thursday, March 12, 2015 - 00:00