Vulnerability Details CVE-2008-4749
Multiple insecure method vulnerabilities in the VImpX.VImpAX ActiveX control (VImpX.ocx) 4.8.8.0 in DB Software Laboratory VImp X, possibly 4.7.7, allow remote attackers to overwrite arbitrary files via (1) the LogFile property and ClearLogFile method, and (2) the SaveToFile method.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.051
EPSS Ranking 89.5%
CVSS Severity
CVSS v2 Score 9.3
References
- http://securityreason.com/securityalert/4509
- http://www.securityfocus.com/bid/31907
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46096
- https://www.exploit-db.com/exploits/6828
- http://securityreason.com/securityalert/4509
- http://www.securityfocus.com/bid/31907
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46096
- https://www.exploit-db.com/exploits/6828
Products affected by CVE-2008-4749
-
cpe:2.3:a:db_soft_lab:vimp_x:4.8.8.0