Published: 03/03/2008 Updated: 29/09/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Subscribe to Rising Antivirus International

Insecure method vulnerability in the Web Scan Object ActiveX control (OL2005.dll) in Rising Antivirus Online Scanner allows remote malicious users to force the download and execution of arbitrary code by setting the BaseURL property and invoking the UpdateEngine method. NOTE: some of these details are obtained from third party information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
rising antivirus international rising web scan object 18.0.7

<!-- - Rising is a popular anti-virus product around China - there's an insecure method flaw inside its free online scanner - it's quite easy to exploit the bug which leads to a remote execution - visit onlinerisingcomcn/free/indexhtm to install the ActiveX first - the demonstration below will download jsmith080220googlepa ...

NVD-CWE-Other http://www.securityfocus.com/bid/27997 http://secunia.com/advisories/29109 http://www.vupen.com/english/advisories/2008/0683/references https://exchange.xforce.ibmcloud.com/vulnerabilities/40838 https://www.exploit-db.com/exploits/5188 https://nvd.nist.gov https://www.exploit-db.com/exploits/5188/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-1116

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect