Vulnerability CVE-2008-2463
Published: 2008-07-07   Modified: 2012-02-12

Description:
The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attackers to download arbitrary files to a client machine via a crafted HTML document or e-mail message, probably involving use of the SnapshotPath and CompressedPath properties and the PrintSnapshot method. NOTE: this can be leveraged for code execution by writing to a Startup folder.

CVSS2 => (AV:N/AC:M/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.8/10
6.4/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
Microsoft -> Office snapshot viewer activex 

 References:
http://www.us-cert.gov/cas/techalerts/TA08-225A.html
http://www.us-cert.gov/cas/techalerts/TA08-189A.html
http://www.kb.cert.org/vuls/id/837785
http://xforce.iss.net/xforce/xfdb/43613
http://www.vupen.com/english/advisories/2008/2012/references
http://www.securitytracker.com/id?1020433
http://www.securityfocus.com/bid/30114
http://www.milw0rm.com/exploits/6124
http://www.microsoft.com/technet/security/advisory/955179.mspx
http://www.exploit-db.com/exploits/6124
http://secunia.com/advisories/30883
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:6120
http://marc.info/?l=bugtraq&m=121915960406986&w=2
http://marc.info/?l=bugtraq&m=121915960406986&w=2
Copyright 2024, cxsecurity.com

 

Back to Top