Test ID:	1.3.6.1.4.1.25623.1.0.900161
Category:	Denial of Service
Title:	Hummingbird Deployment Wizard ActiveX Control Multiple Security Vulnerabilities
Summary:	Deployment Wizard ActiveX Control is prone to multiple security vulnerabilities.
Description:	Summary: Deployment Wizard ActiveX Control is prone to multiple security vulnerabilities. Vulnerability Insight: Multiple flaws exist due to an error in 'SetRegistryValueAsString()', 'Run()' and 'PerformUpdateAsync()' methods in DeployRun.DeploymentSetup.1 (DeployRun.dll) ActiveX control. Vulnerability Impact: Successful exploitation allows execution of arbitrary code. Affected Software/OS: Hummingbird Deployment Wizard version 10.0.0.44 and prior on Windows (all) Solution: Set the kill-bit for the affected ActiveX control. No patch is available as on 21th October, 2008. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2008-4728 BugTraq ID: 31799 http://www.securityfocus.com/bid/31799 https://www.exploit-db.com/exploits/6773 https://www.exploit-db.com/exploits/6774 https://www.exploit-db.com/exploits/6776 http://www.shinnai.net/xplits/TXT_2XfQ1sHruhjaoePszNTG.html http://www.shinnai.net/xplits/TXT_JqLchaIAfq4kSH0NsvJO.html http://www.shinnai.net/xplits/TXT_L0z0Mimixdsko8kI6VFW.html http://secunia.com/advisories/32337 http://www.vupen.com/english/advisories/2008/2857 XForce ISS Database: hummingbird-run-command-execution(45961) https://exchange.xforce.ibmcloud.com/vulnerabilities/45961
Copyright	Copyright (C) 2008 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.