CVE-2008-4749 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2008-4749

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Multiple insecure method vulnerabilities in the VImpX.VImpAX ActiveX control (VImpX.ocx) 4.8.8.0 in DB Software Laboratory VImp X, possibly 4.7.7, allow remote attackers to overwrite arbitrary files via (1) the LogFile property and ClearLogFile method, and (2) the SaveToFile method.

Affected Software

Name	Vendor	Start Version	End Version
Vimp_x	Db_soft_lab	4.8.8.0 (including)	4.8.8.0 (including)

References

http://securityreason.com/securityalert/4509
http://www.securityfocus.com/bid/31907
https://exchange.xforce.ibmcloud.com/vulnerabilities/46096
https://www.exploit-db.com/exploits/6828
http://securityreason.com/securityalert/4509
http://www.securityfocus.com/bid/31907
https://exchange.xforce.ibmcloud.com/vulnerabilities/46096
https://www.exploit-db.com/exploits/6828