CVE-2008-0631

Exploit

EPSS 2.48%
Veröffentlicht 06.02.2008 21:00:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Multiple ActiveX controls in MailBee.dll in MailBee Objects 5.5 allow remote attackers to (1) overwrite arbitrary files via the SaveToDisk method, or (2) modify files via the AddStringToFile method.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Afterlogic ≫ Mailbee Objects Version5.5

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.48%	0.838

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://www.securityfocus.com/bid/27481

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/40011

https://www.exploit-db.com/exploits/4999

https://nvd.nist.gov/vuln/detail/CVE-2008-0631

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-0631

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-0631

EUVD