CVE-2008-6496

Insecure method vulnerability in the VSPDFEditorX.VSPDFEdit ActiveX control in VSPDFEditorX.ocx 1.0.200.0 in VISAGESOFT eXPert PDF EditorX allows remote attackers to create or overwrite arbitrary files via the first argument to the extractPagesToFile method.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 84%
VendorProductVersion
visagesoftexpert_pdf_editorx
1.0.200.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/32990
http://www.securityfocus.com/bid/32664
https://exchange.xforce.ibmcloud.com/vulnerabilities/47166
https://www.exploit-db.com/exploits/7358
http://secunia.com/advisories/32990
http://www.securityfocus.com/bid/32664
https://exchange.xforce.ibmcloud.com/vulnerabilities/47166
https://www.exploit-db.com/exploits/7358