CVE-2008-1617

Double free vulnerability in Web TransferCtrl Class 8,2,1,4 (iManFile.cab), as used in WorkSite Web 8.2 before SP1 P2, allows remote attackers to execute arbitrary code via JavaScript that sets the Server property to a string, then sets the string to null.

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/29733	Vendor Advisory
http://www.mwrinfosecurity.com/publications/mwri_interwoven-worksite-activex-control-remote-code-execution_2008-03-10.pdf	Exploit
http://www.securityfocus.com/bid/28628	Exploit
http://www.vupen.com/english/advisories/2008/1134/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41699

Configurations

Configuration 1 (hide)

cpe:2.3:a:interwoven:worksite_web:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-04-08 18:05

Updated : 2017-08-08 01:30

NVD link : CVE-2008-1617

Mitre link : CVE-2008-1617

CVE.ORG link : CVE-2008-1617

JSON object : View

Products Affected

interwoven

worksite_web

CWE

CWE-189

Numeric Errors

{"id": "CVE-2008-1617", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2008-04-08T18:05:00.000", "references": [{"url": "http://secunia.com/advisories/29733", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.mwrinfosecurity.com/publications/mwri_interwoven-worksite-activex-control-remote-code-execution_2008-03-10.pdf", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/28628", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/1134/references", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41699", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-189"}]}], "descriptions": [{"lang": "en", "value": "Double free vulnerability in Web TransferCtrl Class 8,2,1,4 (iManFile.cab), as used in WorkSite Web 8.2 before SP1 P2, allows remote attackers to execute arbitrary code via JavaScript that sets the Server property to a string, then sets the string to null."}, {"lang": "es", "value": "Vulnerabilidad de doble liberaci\u00f3n en Web TransferCtrl Class 8,2,1,4 (iManFile.cab), usado en WorkSite Web 8.2 anterior a SP1 P2, permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de JavaScript que establece la propiedad Server a String(cadena) y posteriormente a null."}], "lastModified": "2017-08-08T01:30:17.887", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:interwoven:worksite_web:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "038053B6-DDA5-4514-A0D6-931A2C0FA6B2", "versionEndIncluding": "8.2"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}