← back
CVE-2008-4587

CVE-2008-4587

EPSS 10.5%
Insecure method vulnerability in the MSVNClientDownloadManager61Lib.DownloadManager.1 ActiveX control (ISDM.exe 6.1.100.61372) in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the AddFile and RunScheduledJobs methods. NOTE: this could be leveraged for code execution by uploading executable files to Startup folders.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/4909unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/28496http://securityreason.com/securityalert/4428https://exchange.xforce.ibmcloud.com/vulnerabilities/39653https://www.exploit-db.com/exploits/4909http://www.securityfocus.com/bid/27279http://www.vupen.com/english/advisories/2008/0145