Vulnerabilities > CVE-2008-6442 - Unspecified vulnerability in Sina Dloader
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN sina
exploit available
Summary
Insecure method vulnerability in Sina Inc. DLoader Class ActiveX Control allows remote attackers to overwrite arbitrary files via a URL in the first parameter to the DonwloadAndInstall method. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Sina DLoader Class ActiveX Control 'DonwloadAndInstall' Method Arbitrary File Download Vulnerability. CVE-2008-6442. Remote exploit for windows platform |
| id | EDB-ID:32052 |
| last seen | 2016-02-03 |
| modified | 2008-07-14 |
| published | 2008-07-14 |
| reporter | Symantec |
| source | https://www.exploit-db.com/download/32052/ |
| title | Sina DLoader Class ActiveX Control 'DonwloadAndInstall' Method Arbitrary File Download Vulnerability |
References
- http://downloads.securityfocus.com/vulnerabilities/exploits/30223.html
- http://downloads.securityfocus.com/vulnerabilities/exploits/30223.html
- http://www.securityfocus.com/bid/30223
- http://www.securityfocus.com/bid/30223
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43881
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43881