Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5492

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-5492
Last Modified 12 Aug 2009 01:22:46
Published 12 Dec 2008 11:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-5492

Summary

Heap-based buffer overflow in the PDFVIEW.PdfviewCtrl.1 ActiveX control in pdfview.ocx 2.0.0.1 in VeryDOC PDF Viewer OCX Control allows remote attackers to execute arbitrary code via a long first argument to the OpenPDF method. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Verypdf Verydoc Pdf Viewer 2.0.0.1


References

XF - verydoc-pdfview-activex-openpdf-bo(46622)

BID - 32313

MILW0RM - 7126

MISC - http://www.bmgsec.com.au/advisories/openpdf.txt

SREASON - 4715

SECUNIA - 32725


Last Updated: 27 May 2016 10:48:49