Design/Logic Flaw

2008-03-0318:44:00

PRIOn knowledge base

www.prio-n.com

7.9 High

AI Score

Confidence

Low

0.067 Low

EPSS

Percentile

93.9%

JSON

Insecure method vulnerability in the Web Scan Object ActiveX control (OL2005.dll) in Rising Antivirus Online Scanner allows remote attackers to force the download and execution of arbitrary code by setting the BaseURL property and invoking the UpdateEngine method. NOTE: some of these details are obtained from third party information.

CPENameOperatorVersion
rising_web_scan_objecteq18.0.7

CPE	Name	Operator	Version
	rising_web_scan_object	eq	18.0.7

References

secunia.com/advisories/29109

www.securityfocus.com/bid/27997

www.vupen.com/english/advisories/2008/0683/references

exchange.xforce.ibmcloud.com/vulnerabilities/40838

www.exploit-db.com/exploits/5188