Vulnerability Details CVE-2008-4050
A certain ActiveX control in fwRemoteCfg.dll 3.3.3.1 in Friendly Technologies FriendlyPPPoE Client 3.0.0.57 allows remote attackers to (1) create and read arbitrary registry values via the RegistryValue method, and (2) read arbitrary files via the GetTextFile method.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.066
EPSS Ranking 90.8%
CVSS Severity
CVSS v2 Score 9.3
References
- http://secunia.com/advisories/31644
- http://securityreason.com/securityalert/4244
- http://www.securityfocus.com/bid/30939
- http://www.securityfocus.com/bid/30940
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44787
- https://www.exploit-db.com/exploits/6334
- http://secunia.com/advisories/31644
- http://securityreason.com/securityalert/4244
- http://www.securityfocus.com/bid/30939
- http://www.securityfocus.com/bid/30940
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44787
- https://www.exploit-db.com/exploits/6334
Products affected by CVE-2008-4050
-
cpe:2.3:a:friendly_technologies:friendly_pppoe_client:3.0.0.57