Lucene search
HistoryNov 04, 2008 - 9:00 p.m.
CVE-2008-4922
djvu
activex
control
buffer overflow
microsoft office
cve-2008-4922
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.9 High
AI Score
Confidence
High
0.669 Medium
EPSS
Percentile
98.0%
Buffer overflow in the DjVu ActiveX Control 3.0 for Microsoft Office (DjVu_ActiveX_MSOffice.dll) allows remote attackers to execute arbitrary code via a long (1) ImageURL property, and possibly the (2) Mode, (3) Page, or (4) Zoom properties.
Affected configurations
Node
djvuactivex_control_for_microsoft_office_2000
microsoftofficeMatch2000
| CPE | Name | Operator | Version |
|---|---|---|---|
| djvu:activex_control_for_microsoft_office_2000 | djvu activex control for microsoft office 2000 | eq | * |
Related
prion
prion
Buffer overflow
2008-11-04 21:00:00
packetstorm
packetstorm
DjVu DjVu_ActiveX_MSOffice.dll ActiveX ComponentBuffer Overflow
2009-11-26 00:00:00
cvelist
cvelist
CVE-2008-4922
2008-11-04 20:00:00
nvd
nvd
CVE-2008-4922
2008-11-04 21:00:05
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.9 High
AI Score
Confidence
High
0.669 Medium
EPSS
Percentile
98.0%
Related for CVE-2008-4922