SecuritySpace - CVE-2008-5404

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2008-5404

Description: Insecure method vulnerability in the FlexCell.Grid ActiveX control in FlexCell.ocx 5.7.0.1 in FlexCell Grid ActiveX Component allows remote attackers to create and overwrite arbitrary files via the HttpDownloadFile method. NOTE: this could be leveraged for code execution by creating executable files in Startup folders or by accessing files using hcp:// URLs. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Test IDs: 1.3.6.1.4.1.25623.1.0.900406

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2008-5404
BugTraq ID: 32443
http://www.securityfocus.com/bid/32443
http://secunia.com/advisories/32829
XForce ISS Database: flexcell-grid-file-overwrite(46809)
https://exchange.xforce.ibmcloud.com/vulnerabilities/46809

CVE ID:	CVE-2008-5404
Description:	Insecure method vulnerability in the FlexCell.Grid ActiveX control in FlexCell.ocx 5.7.0.1 in FlexCell Grid ActiveX Component allows remote attackers to create and overwrite arbitrary files via the HttpDownloadFile method. NOTE: this could be leveraged for code execution by creating executable files in Startup folders or by accessing files using hcp:// URLs. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Test IDs:	1.3.6.1.4.1.25623.1.0.900406
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2008-5404 BugTraq ID: 32443 http://www.securityfocus.com/bid/32443 http://secunia.com/advisories/32829 XForce ISS Database: flexcell-grid-file-overwrite(46809) https://exchange.xforce.ibmcloud.com/vulnerabilities/46809