Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2008-1898

Published: 21/04/2008 Updated: 11/10/2018
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 945
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Office

Vulnerability Summary

A certain ActiveX control in WkImgSrv.dll 7.03.0616.0, as distributed in Microsoft Works 7 and Microsoft Office 2003 and 2007, allows remote malicious users to execute arbitrary code or cause a denial of service (browser crash) via an invalid WksPictureInterface property value, which triggers an improper function call.

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft office 2003

microsoft office 2007

microsoft works 7.0

Exploits

Exploit DB: Microsoft Works 7 - 'WkImgSrv.dll' WKsPictureInterface() ActiveX (Metasploit)
## # $Id: msworks_wkspictureinterfacerb 10477 2010-09-25 11:59:02Z mc $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/cor ...
Exploit DB: Microsoft Works 7 - 'WkImgSrv.dll' ActiveX Denial of Service (PoC)
<html> <head> <title>Microsoft Works 7 WkImgSrvdll crash POC</title> <script language="JavaScript"> function payload() { var num = -1; objWksPictureInterface = num; } </script> </head> <body onload="JavaScript: return payload();"> <object classid="clsid:00E1DB59-6EFD-4CE7-8C0A-2DA3B ...
Exploit DB: Microsoft Works 7 - 'WkImgSrv.dll' ActiveX Remote Buffer Overflow
<!-- The problem is in wkimgsrvdll module shipped with many MS Offiice Suite (tested on MS OF 2003,MS OF 2007) Actually,this is not the case of buffer overflow attack,just a exploit of insecure method WKsPictureInterface Setting this point to any where in memory and IE will crash when wkiimgsrv's trying to access an invalid memory location L ...

References

CWE-20http://www.securityfocus.com/bid/28820http://archives.neohapsis.com/archives/fulldisclosure/2008-05/0029.htmlhttp://blogs.technet.com/swi/archive/2008/06/05/why-there-wont-be-a-security-update-for-wkimgsrv-dll.aspxhttps://exchange.xforce.ibmcloud.com/vulnerabilities/41876https://www.exploit-db.com/exploits/5530https://www.exploit-db.com/exploits/5460http://www.securityfocus.com/archive/1/491027/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/16649/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTICVE-2024-35863CVE-2024-35910man-in-the-middleCVE-2024-35912CVE-2024-25742LFICVE-2024-32002CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook