Anfälligkeitssuche        Suche in 187964 CVE Beschreibungen
und 85075 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.900004
Kategorie:Windows
Titel:Microsoft Access Snapshot Viewer ActiveX Control Vulnerability
Zusammenfassung:Microsoft Access Snapshot in Microsoft Office Access is prone; to ActiveX control vulnerabilities.
Beschreibung:Summary:
Microsoft Access Snapshot in Microsoft Office Access is prone
to ActiveX control vulnerabilities.

Vulnerability Insight:
Overview: Microsoft Access Snapshot in Microsoft Office Access is prone
to ActiveX control vulnerabilities.

The ActiveX control for viewing a snapshot of Microsoft Access report.
A specially crafted Web site, when visited can inject arbitrary code
because of a vulnerability in the ActiveX control.

Vulnerability Impact:
Exploitation involves convincing the victim to view an HTML
document (eg., web page, HTML email, or email attachment). When a
user views the web page, the vulnerability could allow remove code
execution.

Affected Software/OS:
MS Access Snapshot (with/without) MS Office Access (2000/2002/2003) - Windows (All).

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Querverweis: BugTraq ID: 30114
Common Vulnerability Exposure (CVE) ID: CVE-2008-2463
http://www.securityfocus.com/bid/30114
Cert/CC Advisory: TA08-189A
http://www.us-cert.gov/cas/techalerts/TA08-189A.html
Cert/CC Advisory: TA08-225A
http://www.us-cert.gov/cas/techalerts/TA08-225A.html
CERT/CC vulnerability note: VU#837785
http://www.kb.cert.org/vuls/id/837785
http://www.exploit-db.com/exploits/6124
HPdes Security Advisory: HPSBST02360
http://marc.info/?l=bugtraq&m=121915960406986&w=2
HPdes Security Advisory: SSRT080117
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6120
http://www.securitytracker.com/id?1020433
http://secunia.com/advisories/30883
http://www.vupen.com/english/advisories/2008/2012/references
XForce ISS Database: microsoft-snapshotviewer-code-execution(43613)
https://exchange.xforce.ibmcloud.com/vulnerabilities/43613
CopyrightCopyright 2008 SecPod

Dies ist nur einer von 85075 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.