PT-2008-5362 · Friendly · Friendlypppoe Client
Spdr
·
Publicado
2008-09-11
·
Atualizado
2017-09-29
·
CVE-2008-4049
CVSS v2.0
6.8
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
FriendlyPPPoE Client version 3.0.0.57
Description
The issue concerns a certain ActiveX control in the fwRemoteCfg.dll file, which allows remote attackers to execute arbitrary programs. This is achieved by providing arguments to the
RunApp method.Recommendations
For FriendlyPPPoE Client version 3.0.0.57, consider disabling the
RunApp method as a temporary workaround until a patch is available.Exploit
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Friendlypppoe Client