CVE-2008-4586

Macrovision FLEXnet Connect 6.1 - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-4586. PoCs published by Elazar.

AI-analyzed exploit summary This exploit leverages the unsafe `DownloadAndExecute` method in Macrovision FlexNet's `isusweb.dll` to achieve arbitrary code execution. The HTML/JS PoC triggers the vulnerability via an ActiveX object, downloading and executing a remote payload.

Description

Insecure method vulnerability in the MVSNCLientWebAgent61.WebAgent.1 ActiveX control (isusweb.dll 6.1.100.61372) in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the DownloadAndExecute method.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Elazar · htmlremotewindows

https://www.exploit-db.com/exploits/4913

View Code ZIP pw:eip

This exploit leverages the unsafe `DownloadAndExecute` method in Macrovision FlexNet's `isusweb.dll` to achieve arbitrary code execution. The HTML/JS PoC triggers the vulnerability via an ActiveX object, downloading and executing a remote payload.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Macrovision FlexNet isusweb.dll version 6.1.100.61372

No auth needed

Prerequisites: Victim must visit the malicious page with IE6 and the vulnerable DLL installed

MITRE ATT&CK