|
|
CVE Reference: CVE-2008-3879 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-3879 |
|
|
Description: The Ultra.OfficeControl ActiveX control in OfficeCtrl.ocx 2.0.2008.801 and earlier in Ultra Shareware Ultra Office Control allows remote attackers to force the download of arbitrary files onto a client system via a URL in the first argument to the Open method, in conjunction with a full destination pathname in the first argument (SaveAsDocument argument) to the Save method. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/44750 SREASON http://securityreason.com/securityalert/4201 SAID Secunia Advisory: SA31632 MISC http://www.shinnai.net/xplits/TXT_NPku7jFjRufaz85U6Lxn.html http://www.shinnai.net/index.php?mod=02_Forum&group=Security&argument=Remote_performed_exploits&topic=1219827906.ff.php MILW0RM http://www.milw0rm.com/exploits/6319 BID 30863 |
|
| Return to the previous page. |
