CVE-2008-2463

EXPLOITED

Microsoft Office Snapshot Viewer ActiveX snapview.ocx 10.0.5529.0 - RCE via SnapshotPath/CompressedPath

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2008-2463 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 3 public exploits from researchers including Metasploit, callAX, MC, including a Metasploit module exploits/windows/browser/ms08_041_snapshotviewer.

AI-analyzed exploit summary This Metasploit module exploits CVE-2008-2463 by leveraging the Microsoft Office Snapshot Viewer ActiveX control to download and execute an arbitrary payload on the target system. The exploit uses a malicious HTML page to trigger the vulnerability and deliver a payload via HTTP.

Description

The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attackers to download arbitrary files to a client machine via a crafted HTML document or e-mail message, probably involving use of the SnapshotPath and CompressedPath properties and the PrintSnapshot method. NOTE: this can be leveraged for code execution by writing to a Startup folder.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16605

This Metasploit module exploits CVE-2008-2463 by leveraging the Microsoft Office Snapshot Viewer ActiveX control to download and execute an arbitrary payload on the target system. The exploit uses a malicious HTML page to trigger the vulnerability and deliver a payload via HTTP.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Microsoft Office Snapshot Viewer ActiveX Control
No auth needed
Prerequisites: Target must have the vulnerable ActiveX control installed and enabled · Target must visit the malicious web page
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by callAX · cremotewindows
https://www.exploit-db.com/exploits/6124

This exploit leverages a vulnerability in the Microsoft Access Snapshot Viewer ActiveX control to download and execute an arbitrary file. It generates an HTML file that triggers the vulnerability when opened in a vulnerable system.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Microsoft Access Snapshot Viewer ActiveX Control (Snapview.ocx v 10.0.5529.0)
No auth needed
Prerequisites: Vulnerable version of Microsoft Access Snapshot Viewer ActiveX control · User interaction to open the malicious HTML file
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by MC · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/ms08_041_snapshotviewer.rb

This Metasploit module exploits CVE-2008-2463 by leveraging the Microsoft Office Snapshot Viewer ActiveX control to place arbitrary files on a user's system. It delivers a payload via an HTTP server and triggers the vulnerability through a crafted HTML page.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Microsoft Office Snapshot Viewer ActiveX Control
No auth needed
Prerequisites: Victim must visit a malicious webpage · ActiveX control must be enabled in the browser
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (12)

Core 12
Core References
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA08-189A.html
Exploit, Third Party Advisory exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/6124
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA08-225A.html
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/2012/references
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=121915960406986&w=2
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/837785
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/30883
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6120
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/43613
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/30114
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1020433

Scores

EPSS 0.8409
EPSS Percentile 99.3%

Details

VulnCheck KEV 2008-10-15
CWE
CWE-94
Status published
Products (3)
microsoft/office_snapshot_viewer_activex office_2003
microsoft/office_snapshot_viewer_activex office_xp
microsoft/office_snapshot_viewer_activex office2000
Published Jul 07, 2008
Tracked Since Feb 18, 2026