Lucene search

[email protected]NVD:CVE-2008-0470

HistoryJan 29, 2008 - 8:00 p.m.

CVE-2008-0470

2008-01-2920:00:00

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

High

EPSS

0.072

Percentile

94.1%

JSON

A certain ActiveX control in Comodo AntiVirus 2.0 allows remote attackers to execute arbitrary commands via the ExecuteStr method.

Affected configurations

Nvd

Node

comodocomodo_antivirusMatch2.0

microsoftactivex

VendorProductVersionCPE
comodocomodo_antivirus2.0cpe:2.3:a:comodo:comodo_antivirus:2.0:*:*:*:*:*:*:*
microsoftactivex*cpe:2.3:a:microsoft:activex:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
comodo	comodo_antivirus	2.0	cpe:2.3:a:comodo:comodo_antivirus:2.0:::::::*
microsoft	activex	*	cpe:2.3:a:microsoft:activex::::::::

References

www.securityfocus.com/bid/27424

exchange.xforce.ibmcloud.com/vulnerabilities/39904

www.exploit-db.com/exploits/4974

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

High

EPSS

0.072

Percentile

94.1%

JSON

Related for NVD:CVE-2008-0470

prion1 exploitdb1 cvelist1 cve1