Buffer overflows, format string bugs in ActiveX components.
vulners.com/securityvulns/securityvulns:doc:6946
vulners.com/securityvulns/securityvulns:doc:7633