Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4924

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2008-4924
Last Modified 13 May 2009 01:22:28
Published 04 Nov 2008 04:00:05
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2008-4924

Summary

Multiple insecure method vulnerabilities in MW6 Technologies 1D Barcode ActiveX control (BARCODELib.MW6Barcode, Barcode.dll) 3.0.0.1 allow remote attackers to overwrite arbitrary files via a full pathname argument to the (1) SaveAsBMP and (2) SaveAsWMF methods.

Vulnerable Systems

Application

  • Mw6 Technologies 1d Barcode Decoder Activex 3.0.0.1


References

BID - 31979

MILW0RM - 6871

SREASON - 4562

SECUNIA - 32425


Last Updated: 27 May 2016 10:48:40