CVE-2007-6005

WebEx GpcContainer.GpcContainer.1 - DoS

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-6005. PoCs published by Elazar Broad.

AI-analyzed exploit summary This exploit triggers a denial-of-service vulnerability in WebEx by initializing the 'GpcContainer.GpcContainer.1' ActiveX control with an invalid parameter, causing the application to crash.

Description

Unspecified vulnerability in the GpcContainer.GpcContainer.1 ActiveX control in WebEx allows remote attackers to cause a denial of service (memory access violation and crash) via (1) an invalid argument to the InitParam method or (2) an unspecified vector involving the SetParam method.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Elazar Broad · htmldoswindows
https://www.exploit-db.com/exploits/30761

This exploit triggers a denial-of-service vulnerability in WebEx by initializing the 'GpcContainer.GpcContainer.1' ActiveX control with an invalid parameter, causing the application to crash.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: WebEx (ActiveX control 'GpcContainer.GpcContainer.1')
No auth needed
Prerequisites: Victim must open the malicious HTML file in a browser with ActiveX enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/26430
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/45294
Mailing List mailing-list x_refsource_fulldisc
http://marc.info/?l=full-disclosure&m=119498701505838&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/38445

Scores

EPSS 0.0215
EPSS Percentile 79.8%

Details

CWE
CWE-399
Status published
Products (1)
webex_communications/webex_gpccontainer_activex_control
Published Nov 15, 2007
Tracked Since Feb 18, 2026