Test Kennung:	1.3.6.1.4.1.25623.1.0.900406
Kategorie:	General
Titel:	FlexCell Grid Control ActiveX Arbitrary File Overwrite Vulnerability
Zusammenfassung:	This host is installed with FlexCell Grid Control ActiveX and is; prone to arbitrary File Overwrite vulnerability.
Beschreibung:	Summary: This host is installed with FlexCell Grid Control ActiveX and is prone to arbitrary File Overwrite vulnerability. Vulnerability Insight: The vulnerability is due to an error in the 'httpDownloadFile' method in the 'FlexCell.ocx' component file. Vulnerability Impact: Successful exploitation will let the attacker execute arbitrary codes. Affected Software/OS: FlexCell Grid Control ActiveX 5.7.1 and prior on all Windows Platform. Workaround: Set the killbit for the affected ActiveX control. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	BugTraq ID: 32443 Common Vulnerability Exposure (CVE) ID: CVE-2008-5404 http://www.securityfocus.com/bid/32443 http://secunia.com/advisories/32829 XForce ISS Database: flexcell-grid-file-overwrite(46809) https://exchange.xforce.ibmcloud.com/vulnerabilities/46809
Copyright	Copyright (C) 2008 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.