← Back

Orbit Downloader

orbit_downloader

Vendor: Orbit Downloader • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2009-1064
2Orbit Downloader
Orbitdownloader
2Orbit Downloader
Orbit Downloader
Apr 23, 2026
Mar 26, 2009
N/A· v4
N/A· v3
5.8 MEDIUM· v2
Argument injection vulnerability in orbitmxt.dll 2.1.0.2 in the Orbit Downloader 2.8.7 and earlier ActiveX control allows remote attackers to overwrite arbitrary files via whitespace and a command-line switch, followed b...Show more
Argument injection vulnerability in orbitmxt.dll 2.1.0.2 in the Orbit Downloader 2.8.7 and earlier ActiveX control allows remote attackers to overwrite arbitrary files via whitespace and a command-line switch, followed by a full pathname, in the third argument to the download method.Show less
CVE-2008-1602
1Orbit Downloader
1Orbit Downloader
Apr 23, 2026
Apr 6, 2008
N/A· v4
N/A· v3
10.0 HIGH· v2
Stack-based buffer overflow in Orbit downloader 2.6.3 and 2.6.4 allows remote attackers to execute arbitrary code via a long download URL, which is not properly handled during Unicode conversion for a balloon notificatio...Show more
Stack-based buffer overflow in Orbit downloader 2.6.3 and 2.6.4 allows remote attackers to execute arbitrary code via a long download URL, which is not properly handled during Unicode conversion for a balloon notification after a download has failed.Show less