Lucene search
HistoryApr 07, 2009 - 2:17 p.m.
CVE-2008-6638
cve-2008-6638
insecure method
versalsoft
http image uploader
activex control
file deletion
vulnerability
nvd
8.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:C/A:C
7 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
74.5%
Insecure method vulnerability in the Versalsoft HTTP Image Uploader ActiveX control (UUploaderSvrD.dll 6.0.0.35) allows remote attackers to delete arbitrary files via the RemoveFileOrDir method.
Affected configurations
Node
versalsofthttp_file_upload_activex_controlMatch6.0.0.35
| CPE | Name | Operator | Version |
|---|---|---|---|
| versalsoft:http_file_upload_activex_control | versalsoft http file upload activex control | eq | 6.0.0.35 |
Related
openvas
openvas
Versalsoft HTTP Image Uploader ActiveX Vulnerability
2009-04-17 00:00:00
Versalsoft HTTP Image Uploader ActiveX Vulnerability
2009-04-17 00:00:00
prion
prion
Security feature bypass
2009-04-07 14:17:00
nvd
nvd
CVE-2008-6638
2009-04-07 14:17:17
cvelist
cvelist
CVE-2008-6638
2009-04-07 10:00:00
8.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:C/A:C
7 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
74.5%
Related for CVE-2008-6638