CVE-2008-6442 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2008-6442

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Insecure method vulnerability in Sina Inc. DLoader Class ActiveX Control allows remote attackers to overwrite arbitrary files via a URL in the first parameter to the DonwloadAndInstall method. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected Software

Name	Vendor	Start Version	End Version
Dloader	Sina	- (including)	- (including)

References

http://downloads.securityfocus.com/vulnerabilities/exploits/30223.html
http://www.securityfocus.com/bid/30223
https://exchange.xforce.ibmcloud.com/vulnerabilities/43881
http://downloads.securityfocus.com/vulnerabilities/exploits/30223.html
http://www.securityfocus.com/bid/30223
https://exchange.xforce.ibmcloud.com/vulnerabilities/43881