CVE-2008-6496

Sažetak

Insecure method vulnerability in the VSPDFEditorX.VSPDFEdit ActiveX control in VSPDFEditorX.ocx 1.0.200.0 in VISAGESOFT eXPert PDF EditorX allows remote attackers to create or overwrite arbitrary files via the first argument to the extractPagesToFile method.

Reference

http://secunia.com/advisories/32990
http://www.securityfocus.com/bid/32664
https://exchange.xforce.ibmcloud.com/vulnerabilities/47166
https://www.exploit-db.com/exploits/7358

CVSS

Base:	8.8
Impact:	9.2
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:C/A:C

Zadnje važnije ažuriranje

29-09-2017 - 01:33

Objavljeno

20-03-2009 - 00:30