Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6339

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2007-6339
Last Modified 07 Mar 2011 10:02:29
Published 01 May 2008 03:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-6339

Summary

The Akamai Download Manager (aka DLM or dlmanager) ActiveX control (DownloadManagerV2.ocx) before 2.2.3.5 allows remote attackers to force the download and execution of arbitrary code via unspecified "undocumented object parameters."

Vulnerable Systems

Application

  • Akamai Technologies Download Manager 2.2.0.0

  • Akamai Technologies Download Manager 2.2.1.0


References

BID - 28993

IDEFENSE - 20080430 Akamai Download Manager Arbitrary Program Execution Vulnerability

VUPEN - ADV-2008-1408

XF - akamai-download-code-execution(42117)

SECTRACK - 1019955

SECUNIA - 30037

FULLDISC - 20080430 Akamai Technologies Security Advisory 2008-0001 (Download Manager)


Last Updated: 27 May 2016 10:46:28