CVE-2008-0237
published 2008-01-11CVE-2008-0237: The Microsoft Rich Textbox ActiveX Control (RICHTX32.OCX) 6.1.97.82 allows remote attackers to execute arbitrary commands by invoking the insecure SaveFile…
PriorityP348medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
20.47%
97.2th percentile
The Microsoft Rich Textbox ActiveX Control (RICHTX32.OCX) 6.1.97.82 allows remote attackers to execute arbitrary commands by invoking the insecure SaveFile method.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | rich_textbox_control | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
StreamAudio ChainCast ProxyManager - 'ccpm_0237.dll' Remote Buffer Overflow
exploitdb·2008-01-11
CVE-2008-0248 StreamAudio ChainCast ProxyManager - 'ccpm_0237.dll' Remote Buffer Overflow
StreamAudio ChainCast ProxyManager - 'ccpm_0237.dll' Remote Buffer Overflow
---
StreamAudio ChainCast ProxyManager ccpm_0237.dll SEH Overwrite Exploit
function Check() {
var buf = 'A';
while (buf.length
Unable to create object
# milw0rm.com [2008-01-11]
Exploit-DB
Microsoft Rich Textbox Control 6.0-SP6 - 'SaveFile()' Insecure Method
exploitdb·2008-01-09
CVE-2008-0237 Microsoft Rich Textbox Control 6.0-SP6 - 'SaveFile()' Insecure Method
Microsoft Rich Textbox Control 6.0-SP6 - 'SaveFile()' Insecure Method
---
Microsoft Rich Textbox Control 6.0 (SP6) "SaveFile()" Insecure Method
url: http://www.microsoft.com
Author: shinnai
mail: shinnai[at]autistici[dot]org
site: http://shinnai.altervista.org
This was written for educational purpose. Use it at your own risk.
Author will be not responsible for any damage.
Technical details:
File: RICHTX32.OCX
ver.: 6.1.97.82
While this GUID {3B7C8860-D78F-101B-B9B5-04021C009402} is
killbited, this one {B617B991-A767-4F05-99BA-AC6FCABB102E}
works fine so it is possible, using the "SaveFile()" method,
to save the content of the rich textbox on a user's pc.
This can be used to save, overwrite and/or corrupt arbitrary
files on the system.
It's marked as:
RegKey Safe for Script: False
R
No writeups or analysis indexed.
http://shinnai.altervista.org/exploits/txt/TXT_DZVN8CwCha0I2fI3NeEs.htmlhttp://www.securityfocus.com/bid/27201https://exchange.xforce.ibmcloud.com/vulnerabilities/39557https://www.exploit-db.com/exploits/4874http://shinnai.altervista.org/exploits/txt/TXT_DZVN8CwCha0I2fI3NeEs.htmlhttp://www.securityfocus.com/bid/27201https://exchange.xforce.ibmcloud.com/vulnerabilities/39557https://www.exploit-db.com/exploits/4874
2008-01-11
Published