CVE-2008-1116
published 2008-03-03CVE-2008-1116: Insecure method vulnerability in the Web Scan Object ActiveX control (OL2005.dll) in Rising Antivirus Online Scanner allows remote attackers to force the…
PriorityP347critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
10.17%
95.1th percentile
Insecure method vulnerability in the Web Scan Object ActiveX control (OL2005.dll) in Rising Antivirus Online Scanner allows remote attackers to force the download and execution of arbitrary code by setting the BaseURL property and invoking the UpdateEngine method. NOTE: some of these details are obtained from third party information.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| rising_antivirus_international | rising_web_scan_object | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/29109http://www.securityfocus.com/bid/27997http://www.vupen.com/english/advisories/2008/0683/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/40838https://www.exploit-db.com/exploits/5188http://secunia.com/advisories/29109http://www.securityfocus.com/bid/27997http://www.vupen.com/english/advisories/2008/0683/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/40838https://www.exploit-db.com/exploits/5188
2008-03-03
Published