CVE-2008-4587 in FLEXnet Connectinfo

Summary

Insecure method vulnerability in the MSVNClientDownloadManager61Lib.DownloadManager.1 ActiveX control (ISDM.exe 6.1.100.61372) in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the AddFile and RunScheduledJobs methods. NOTE: this could be leveraged for code execution by uploading executable files to Startup folders.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsible

Reservation

10/15/2008

Disclosure

10/15/2008

Moderation

VulDB entry created

Entries

VDB-44555

CPE

ready

CWE

CWE-434 (Unconfirmed)

Exploit

Download

CVSS

9.8

EPSS

0.08898

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-4587
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-4587
CVE Details	https://www.cvedetails.com/cve/CVE-2008-4587/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!