CVE-2008-6638

Опубликовано: 07 апр. 2009

Источник: nvd

CVSS2: 8.8

EPSS Низкий

Описание

Insecure method vulnerability in the Versalsoft HTTP Image Uploader ActiveX control (UUploaderSvrD.dll 6.0.0.35) allows remote attackers to delete arbitrary files via the RemoveFileOrDir method.

Ссылки

http://www.securityfocus.com/bid/28301
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/41258
https://www.exploit-db.com/exploits/5272
https://www.exploit-db.com/exploits/5569
http://www.securityfocus.com/bid/28301
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/41258
https://www.exploit-db.com/exploits/5272
https://www.exploit-db.com/exploits/5569

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:versalsoft:http_file_upload_activex_control:6.0.0.35:*:*:*:*:*:*:*

EPSS

Процентиль: 72%

0.00724

Низкий

8.8 High

CVSS2

Дефекты

CWE-16

Связанные уязвимости

GHSA-jp8m-f627-fcx7

github

больше 3 лет назад