CVE-2008-4587

Published: Oct 15, 2008Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Insecure method vulnerability in the MSVNClientDownloadManager61Lib.DownloadManager.1 ActiveX control (ISDM.exe 6.1.100.61372) in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the AddFile and RunScheduledJobs methods. NOTE: this could be leveraged for code execution by uploading executable files to Startup folders.

Affected (1)

Products: Acresso: Flexnet Connect

1 product

Flexnet Connect

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Acresso Flexnet Connect	Version 6.1

References (12)

http://secunia.com/advisories/28496

Source: cve@mitre.org

Vendor Advisory

http://securityreason.com/securityalert/4428

Source: cve@mitre.org

http://www.securityfocus.com/bid/27279

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/0145

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/39653

Source: cve@mitre.org

https://www.exploit-db.com/exploits/4909

Source: cve@mitre.org

http://secunia.com/advisories/28496

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securityreason.com/securityalert/4428

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/27279

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2008/0145

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/39653

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.exploit-db.com/exploits/4909

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.