CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-4587

Insecure method vulnerability in the MSVNClientDownloadManager61Lib.DownloadManager.1 ActiveX control (ISDM.exe 6.1.100.61372) in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the AddFile and RunScheduledJobs methods. NOTE: this could be leveraged for code execution by uploading executable files to Startup folders.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.101

EPSS Ranking 92.7%

CVSS Severity

CVSS v2 Score 9.3

References

http://secunia.com/advisories/28496
http://securityreason.com/securityalert/4428
http://www.securityfocus.com/bid/27279
http://www.vupen.com/english/advisories/2008/0145
https://exchange.xforce.ibmcloud.com/vulnerabilities/39653
https://www.exploit-db.com/exploits/4909
http://secunia.com/advisories/28496
http://securityreason.com/securityalert/4428
http://www.securityfocus.com/bid/27279
http://www.vupen.com/english/advisories/2008/0145
https://exchange.xforce.ibmcloud.com/vulnerabilities/39653
https://www.exploit-db.com/exploits/4909

Products affected by CVE-2008-4587

Acresso » Flexnet Connect » Version: 6.1

cpe:2.3:a:acresso:flexnet_connect:6.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-4587

Products

Pricing

Contact Us