CVE-2013-6040

Summary

MW6 Aztec, DataMatrix, and MaxiCode ActiveX controls before version 4.0 vulnerable to arbitrary code via a crafted HTML document. Latest versions (4.0) of MW6 Aztec, DataMatrix, and MaxiCode ActiveX controls have resolved the issue

Affected Software

VendorProductVersion RangeStatus
MW6 TechMW6 Aztec ActiveX Controls0.0 < 4.0affected
MW6 TechMW6 DataMatrix ActiveX Controls0.0 < 4.0affected
MW6 TechMW6 MaxiCode ActiveX Controls0.0 < 4.0affected

Weaknesses

  • CWE-94: Improper Control of Generation of Code

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: total

References