Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4749

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-4749
Last Modified 29 Jan 2009 01:57:20
Published 27 Oct 2008 04:00:04
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-4749

Summary

Multiple insecure method vulnerabilities in the VImpX.VImpAX ActiveX control (VImpX.ocx) 4.8.8.0 in DB Software Laboratory VImp X, possibly 4.7.7, allow remote attackers to overwrite arbitrary files via (1) the LogFile property and ClearLogFile method, and (2) the SaveToFile method.

Vulnerable Systems

Application

  • Db Soft Lab Vimp X 4.8.8.0


References

XF - db-activex-vimpx-file-overwrite(46096)

BID - 31907

MILW0RM - 6828

SREASON - 4509


Last Updated: 27 May 2016 10:48:36