CVE-2004-1947

Опубликовано: 19 апр. 2004

Источник: nvd

CVSS2: 5

EPSS Средний

Описание

The AVXSCANONLINE.AvxScanOnlineCtrl.1 ActiveX control in BitDefender Scan Online allows remote attackers to (1) obtain sensitive information such as system drives and contents or (2) use the RequestFile method to download and execute arbitrary code via an object codebase that uses bitdefender.cab.

Ссылки

http://marc.info/?l=bugtraq&m=108240639427412&w=2
http://marc.info/?l=bugtraq&m=108248367901616&w=2
http://secunia.com/advisories/11427
Exploit
Vendor Advisory
http://securitytracker.com/id?1009862
http://www.osvdb.org/5549
http://www.securityfocus.com/bid/10174
http://www.securityfocus.com/bid/10175
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/15911
http://marc.info/?l=bugtraq&m=108240639427412&w=2
http://marc.info/?l=bugtraq&m=108248367901616&w=2
http://secunia.com/advisories/11427
Exploit
Vendor Advisory
http://securitytracker.com/id?1009862
http://www.osvdb.org/5549
http://www.securityfocus.com/bid/10174
http://www.securityfocus.com/bid/10175
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/15911

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:softwin:bitdefender:*:*:*:*:*:*:*:*

EPSS

Процентиль: 94%

0.12492

Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-9x66-8986-f2w2

github

почти 4 года назад