Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3558

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-3558
Last Modified 07 Mar 2011 12:00:00
Published 08 Aug 2008 03:41:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-3558

Summary

Stack-based buffer overflow in the WebexUCFObject ActiveX control in atucfobj.dll in Cisco WebEx Meeting Manager before 20.2008.2606.4919 allows remote attackers to execute arbitrary code via a long argument to the NewObject method.

Vulnerable Systems

Application

  • Cisco Webex Meeting Manager 20.2008.2601.4928


References

CERT-VN - VU#661827

XF - webex-webexucfobject-bo(44250)

VUPEN - ADV-2008-2319

SECTRACK - 1020641

BID - 30578

MILW0RM - 6220

CISCO - 20080814 Vulnerability in Cisco WebEx Meeting Manager ActiveX Control

SECUNIA - 31397

FULLDISC - 20080806 Webex atucfobj Module ActiveX Control Buffer Overflow Vulnerability


Last Updated: 27 May 2016 10:48:14