Vulnerabilities > CVE-2008-6442 - Unspecified vulnerability in Sina Dloader
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Insecure method vulnerability in Sina Inc. DLoader Class ActiveX Control allows remote attackers to overwrite arbitrary files via a URL in the first parameter to the DonwloadAndInstall method. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Sina DLoader Class ActiveX Control 'DonwloadAndInstall' Method Arbitrary File Download Vulnerability. CVE-2008-6442. Remote exploit for windows platform |
id | EDB-ID:32052 |
last seen | 2016-02-03 |
modified | 2008-07-14 |
published | 2008-07-14 |
reporter | Symantec |
source | https://www.exploit-db.com/download/32052/ |
title | Sina DLoader Class ActiveX Control 'DonwloadAndInstall' Method Arbitrary File Download Vulnerability |