| Vulnerability Name: | CVE-2008-2463 (CCN-43613) | ||||||||
| Assigned: | 2008-07-07 | ||||||||
| Published: | 2008-07-07 | ||||||||
| Updated: | 2017-09-29 | ||||||||
| Summary: | The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attackers to download arbitrary files to a client machine via a crafted HTML document or e-mail message, probably involving use of the SnapshotPath and CompressedPath properties and the PrintSnapshot method. Note: this can be leveraged for code execution by writing to a Startup folder. | ||||||||
| CVSS v3 Severity: | 10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P) 5.3 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:POC/RL:OF/RC:C)
7.3 High (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-94 | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: MITRE Type: CNA CVE-2008-2463 Source: HP Type: UNKNOWN HPSBST02360 Source: CCN Type: SA30883 Microsoft Access Snapshot Viewer ActiveX Control Vulnerability Source: SECUNIA Type: UNKNOWN 30883 Source: CCN Type: SECTRACK ID: 1020433 Microsoft Access Snapshot Viewer ActiveX Control Lets Remote Users Download Files to Arbitrary Locations Source: EXPLOIT-DB Type: UNKNOWN 6124 Source: CCN Type: IBM Internet Security Systems Protection Alert July 7, 2008 Microsoft ActiveX Snapshot Viewer for Microsoft Access RCE Source: CCN Type: US-CERT VU#837785 Microsoft Office Snapshot Viewer ActiveX control race condition Source: CERT-VN Type: US Government Resource VU#837785 Source: CCN Type: Microsoft Web site Snapshot Viewer for Microsoft Access Source: CCN Type: Microsoft Security Advisory (955179) Vulnerability in the ActiveX Control for the Snapshot Viewer for Microsoft Access Could Allow Remote Code Execution Source: CONFIRM Type: UNKNOWN http://www.microsoft.com/technet/security/advisory/955179.mspx Source: CCN Type: Microsoft Security Bulletin MS08-041 Vulnerability in the ActiveX Control for the Snapshot Viewer for Microsoft Access Could Allow Remote Code Execution (955617) Source: BID Type: UNKNOWN 30114 Source: CCN Type: BID-30114 Snapshot Viewer for Microsoft Access ActiveX Control Arbitrary File Download Vulnerability Source: SECTRACK Type: UNKNOWN 1020433 Source: CERT Type: US Government Resource TA08-189A Source: CERT Type: US Government Resource TA08-225A Source: VUPEN Type: UNKNOWN ADV-2008-2012 Source: XF Type: UNKNOWN microsoft-snapshotviewer-code-execution(43613) Source: XF Type: UNKNOWN microsoft-snapshotviewer-code-execution(43613) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:6120 Source: CCN Type: Rapid7 Vulnerability and Exploit Database [07-07-2008] Snapshot Viewer for Microsoft Access ActiveX Control Arbitrary File Download | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| Oval Definitions | |||||||||
| |||||||||
| BACK | |||||||||