Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6638

Overview

Vulnerability Score 8.8 8.8
CVE Id CVE-2008-6638
Last Modified 01 Sep 2009 01:24:27
Published 07 Apr 2009 10:17:17
Confidentiality Impact NONE NONE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-6638

Summary

Insecure method vulnerability in the Versalsoft HTTP Image Uploader ActiveX control (UUploaderSvrD.dll 6.0.0.35) allows remote attackers to delete arbitrary files via the RemoveFileOrDir method.

Vulnerable Systems

Application

  • Versalsoft Http File Upload Activex Control 6.0.0.35


References

XF - httpfileupload-activex-file-delete(41258)

BID - 28301

MILW0RM - 5569

MILW0RM - 5272


Last Updated: 27 May 2016 10:49:16