Return to CVE list

CVE-2008-1093

9.3
Critical

CVE-2008-1093

cve@mitre.org
Modified
View on MITREFind on GitHub

Description

Acresso InstallShield Update Agent does not properly verify the authenticity of Rule Scripts obtained from GetRules.asp web pages on FLEXnet Connect servers, which allows remote man-in-the-middle attackers to execute arbitrary VBScript code via Trojan horse Rules.

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

cve@mitre.org
http://secunia.com/advisories/31896
cve@mitre.org
http://securityreason.com/securityalert/4268
cve@mitre.org
http://www.kb.cert.org/vuls/id/837092
cve@mitre.org
http://www.securityfocus.com/archive/1/496389/100/0/threaded
cve@mitre.org
http://www.securityfocus.com/bid/31204
cve@mitre.org
http://www.securitytracker.com/id?1020893
cve@mitre.org
http://www.simplicity.net/vuln/CVE-2008-1093.txt
cve@mitre.org
http://www.vupen.com/english/advisories/2008/2613
af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/31896
af854a3a-2127-422b-91ae-364da2661108
http://securityreason.com/securityalert/4268
af854a3a-2127-422b-91ae-364da2661108
http://www.kb.cert.org/vuls/id/837092
af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/archive/1/496389/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/31204
af854a3a-2127-422b-91ae-364da2661108
http://www.securitytracker.com/id?1020893
af854a3a-2127-422b-91ae-364da2661108
http://www.simplicity.net/vuln/CVE-2008-1093.txt
af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2008/2613