Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2008-2434

Published: 23/12/2008 Updated: 11/10/2018
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Housecall

Vulnerability Summary

The Trend Micro HouseCall ActiveX control 6.51.0.1028 and 6.6.0.1278 in Housecall_ActiveX.dll allows remote malicious users to download an arbitrary library file onto a client system via a "custom update server" argument. NOTE: this can be leveraged for code execution by writing to a Startup folder.

Vulnerable Product Search on Vulmon Subscribe to Product

trend micro housecall 6.6

trend micro housecall 6.51.0.1028

trend micro housecall 6.6.0.1278

References

CWE-94http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1038646&id=EN-1038646http://secunia.com/advisories/31337http://secunia.com/secunia_research/2008-32/http://www.securityfocus.com/bid/32965http://osvdb.org/50941http://www.kb.cert.org/vuls/id/541025http://securityreason.com/securityalert/4802http://www.vupen.com/english/advisories/2008/3464https://exchange.xforce.ibmcloud.com/vulnerabilities/47524http://www.securityfocus.com/archive/1/499495/100/0/threadedhttps://nvd.nist.govhttps://www.kb.cert.org/vuls/id/541025
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120CVE-2024-35921CVE-2024-35874brute forceCVE-2024-36080unprivilegedCVE-2024-35917IDORCVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook