CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2008-0437

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1720%
EPSS Percentile8.28th
Published2008年1月23日
Last Modified2026年4月23日

Vulnerability Description

Multiple buffer overflows in the WebHPVCInstall.HPVirtualRooms14 ActiveX control in HPVirtualRooms14.dll 1.0.0.100, as used in the installation process for HP Virtual Rooms, allow remote attackers to execute arbitrary code via a long (1) AuthenticationURL, (2) PortalAPIURL, or (3) cabroot property value. NOTE: some of these details are obtained from third party information.

Affected Platforms (CPE)

📦
Hp

Virtual Rooms

= 1.0.0.100
📦
Microsoft

Activex

All versions

References & Advisories

🔗 http://marc.info/?l=full-disclosure&m=120098751528333&w=2
🔗 http://secunia.com/advisories/28595
🔗 http://www.securityfocus.com/bid/27384
🔗 http://www.vupen.com/english/advisories/2008/0236
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/39836
🔗 https://www.exploit-db.com/exploits/4959
🔗 http://marc.info/?l=full-disclosure&m=120098751528333&w=2
🔗 http://secunia.com/advisories/28595

相關漏洞威脅

CVE-2009-020810.0

Unspecified vulnerability in HP Virtual Rooms Client before 7.0.1, when running on Windows, allows remote attackers to execute arb...

CVE-2021-344239.8

A buffer overflow vulnerability was discovered in Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before ve...

CVE-2021-344169.8

The network address administrative settings web portal for the Zoom on-premise Meeting Connector before version 4.6.360.20210325, ...

CVE-2021-344177.9

The network proxy page on the web portal for the Zoom On-Premise Meeting Connector Controller before version 4.6.365.20210703, Zoo...