CVE-2008-4050

A certain ActiveX control in fwRemoteCfg.dll 3.3.3.1 in Friendly Technologies FriendlyPPPoE Client 3.0.0.57 allows remote attackers to (1) create and read arbitrary registry values via the RegistryValue method, and (2) read arbitrary files via the GetTextFile method.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 90%
VendorProductVersion
friendly_technologiesfriendly_pppoe_client
3.0.0.57
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/31644
http://securityreason.com/securityalert/4244
http://www.securityfocus.com/bid/30939
http://www.securityfocus.com/bid/30940
https://exchange.xforce.ibmcloud.com/vulnerabilities/44787
https://www.exploit-db.com/exploits/6334
http://secunia.com/advisories/31644
http://securityreason.com/securityalert/4244
http://www.securityfocus.com/bid/30939
http://www.securityfocus.com/bid/30940
https://exchange.xforce.ibmcloud.com/vulnerabilities/44787
https://www.exploit-db.com/exploits/6334