CVE-2008-4586

Insecure method vulnerability in the MVSNCLientWebAgent61.WebAgent.1 ActiveX control (isusweb.dll 6.1.100.61372) in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the DownloadAndExecute method.

Published: Oct 16, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-4586
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
acresso / flexnet_connect	6.1	6.1.x

http://secunia.com/advisories/28496
http://securityreason.com/securityalert/4425
http://www.securityfocus.com/bid/27279
http://www.vupen.com/english/advisories/2008/0145
https://www.exploit-db.com/exploits/4913

Vulnerability Database

290,206

CVE-2008-4586