CVE-2008-1116

Rising Antivirus Online Scanner - RCE

Title source: llm

Description

Insecure method vulnerability in the Web Scan Object ActiveX control (OL2005.dll) in Rising Antivirus Online Scanner allows remote attackers to force the download and execution of arbitrary code by setting the BaseURL property and invoking the UpdateEngine method. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by John Smith · htmlremotewindows

https://www.exploit-db.com/exploits/5188

View Code ZIP pw:eip

References (5)

[Patch] http://www.securityfocus.com/bid/27997

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/40838

[Third Party Advisory] http://www.vupen.com/english/advisories/2008/0683/references

[Vendor Advisory] http://secunia.com/advisories/29109

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/5188

Scores

EPSS 0.0676

EPSS Percentile 91.3%

Details

Status published

Products (1)

rising_antivirus_international/rising_web_scan_object 18.0.7

Published Mar 03, 2008

Tracked Since Feb 18, 2026