Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4923

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2008-4923
Last Modified 13 May 2009 01:22:28
Published 04 Nov 2008 04:00:05
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2008-4923

Summary

Multiple insecure method vulnerabilities in MW6 Technologies Aztec ActiveX control (AZTECLib.MW6Aztec, Aztec.dll) 3.0.0.1 allow remote attackers to overwrite arbitrary files via a full pathname argument to the (1) SaveAsBMP and (2) SaveAsWMF methods.

Vulnerable Systems

Application

  • Mw6 Technologies Aztec Activex 3.0.0.1


References

BID - 31974

MILW0RM - 6870

SREASON - 4561

SECUNIA - 32425


Last Updated: 27 May 2016 10:48:40