Vulnerability Description
Multiple ActiveX controls in MailBee.dll in MailBee Objects 5.5 allow remote attackers to (1) overwrite arbitrary files via the SaveToDisk method, or (2) modify files via the AddStringToFile method.
CVSS Score
4.3
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Afterlogic | Mailbee Objects | 5.5 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/27481Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/40011
- https://www.exploit-db.com/exploits/4999
- http://www.securityfocus.com/bid/27481Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/40011
- https://www.exploit-db.com/exploits/4999
FAQ
What is CVE-2008-0631?
CVE-2008-0631 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Multiple ActiveX controls in MailBee.dll in MailBee Objects 5.5 allow remote attackers to (1) overwrite arbitrary files via the SaveToDisk method, or (2) modify files via the AddStringToFile method.
How severe is CVE-2008-0631?
CVE-2008-0631 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-0631?
Check the references section above for vendor advisories and patch information. Affected products include: Afterlogic Mailbee Objects.