Vulnerabilities > Acresso
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-10-15 | CVE-2008-4587 | Arbitrary File Download vulnerability in Acresso Flexnet Connect 6.1 Insecure method vulnerability in the MSVNClientDownloadManager61Lib.DownloadManager.1 ActiveX control (ISDM.exe 6.1.100.61372) in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the AddFile and RunScheduledJobs methods. | 9.3 |
2008-10-15 | CVE-2008-4586 | Arbitrary File Download vulnerability in Acresso Flexnet Connect 6.1 Insecure method vulnerability in the MVSNCLientWebAgent61.WebAgent.1 ActiveX control (isusweb.dll 6.1.100.61372) in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the DownloadAndExecute method. | 9.3 |
2008-09-18 | CVE-2008-1093 | Code Injection vulnerability in Acresso Flexnet Connect and Intallshield Update Agent Acresso InstallShield Update Agent does not properly verify the authenticity of Rule Scripts obtained from GetRules.asp web pages on FLEXnet Connect servers, which allows remote man-in-the-middle attackers to execute arbitrary VBScript code via Trojan horse Rules. | 9.3 |