o A vulnerability in the Tobesoft XPlatform ActiveX could allow remote attacker to cause arbitrary code execution.
o A vulnerability is due to lack of proper input validation of the code execution.
o Arbitrary code can be executed using method supported by XPlatform ActvieX control. (CVE-2020-7806)
□ Affected Products
188.8.131.52 and prior
o Update software over 184.108.40.2060 version
□ Reference site o http://support.tobesoft.co.kr/Support/index.html
o Thanks to Jeongun Baek for reporting this vulerability