CVE Vulnerabilities

CVE-2008-7168

Published: Sep 08, 2009 | Modified: Aug 17, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Insecure method vulnerability in the UUSee UUUpgrade ActiveX control (UUUpgrade.ocx 3.0.2.12) allows remote attackers to force the download and overwrite of arbitrary files via crafted arguments to the Update method, as exploited in the wild in June 2009.

Affected Software

Name Vendor Start Version End Version
Uusee Uusee 4.0.0.32_2008 4.0.0.32_2008
Uuupgrade.ocx Uusee 3.0.2.12 3.0.2.12

References