Lucene search
+L

4 matches found

Prion
Prion
added 2008/04/08 6:5 p.m.10 views

Double free

Double free vulnerability in Web TransferCtrl Class 8,2,1,4 iManFile.cab, as used in WorkSite Web 8.2 before SP1 P2, allows remote attackers to execute arbitrary code via JavaScript that sets the Server property to a string, then sets the string to null...

9.3CVSS8.2AI score0.04369EPSS
Exploits2References5Affected Software1
NVD
NVD
added 2008/04/08 6:5 p.m.22 views

CVE-2008-1617

Double free vulnerability in Web TransferCtrl Class 8,2,1,4 iManFile.cab, as used in WorkSite Web 8.2 before SP1 P2, allows remote attackers to execute arbitrary code via JavaScript that sets the Server property to a string, then sets the string to null...

9.3CVSS7.6AI score0.04369EPSS
Exploits2References5
Prion
Prion
added 2008/04/08 6:5 p.m.16 views

Code injection

The Web TransferCtrl Class 8,2,1,4 iManFile.cab, as used in WorkSite Web 8.2 before SP1 P2, allows remote attackers to cause a denial of service memory consumption via a large number of SendNrlLink directives, which opens a separate window for each directive...

7.1CVSS7.1AI score0.0131EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2008/04/08 6:0 p.m.46 views

CVE-2008-1617

CVE-2008-1617 describes a double-free vulnerability in Interwoven WorkSite 8.2 Web components, specifically the Web TransferCtrl Class ActiveX control (iManFile.cab). The flaw occurs in handling the Server property of the control, allowing a remote attacker to execute arbitrary code by setting th...

9.3CVSS7.6AI score0.04369EPSS
Exploits2References5Affected Software1
Rows per page
Query Builder