FlexCell Grid Control ActiveX Arbitrary File Overwrite Vulnerability Network Vulnerability

Summary

This host is installed with FlexCell Grid Control ActiveX and is prone to arbitrary File Overwrite vulnerability.

Impact

Successful exploitation will let the attacker execute arbitrary codes. Impact Level: System/Application

Insight

The vulnerability is due to an error in the 'httpDownloadFile' method in the 'FlexCell.ocx' component file.

Affected

FlexCell Grid Control ActiveX 5.7.1 and prior on all Windows Platform. Workaround: Set the killbit for the affected ActiveX control. http://support.microsoft.com/kb/240797

References

http://secunia.com/advisories/32829
http://www.grid2000.com

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-5404

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Acrobat Multiple Vulnerabilities -01 Jan 13 (Mac OS X)
Adobe Extension Manager CS5 Insecure Library Loading Vulnerability (Win)
Adobe AIR Multiple Vulnerabilities(APSB14-22)-(Mac OS X)
Adobe AIR Multiple Vulnerabilities-01 Jan15 (Mac OS X)
Adobe Captivate Insecure Library Loading Vulnerability

Take action and discover your vulnerabilities