CVE-2008-4586

Macrovision FLEXnet Connect 6.1 - RCE

Title source: llm

Description

Insecure method vulnerability in the MVSNCLientWebAgent61.WebAgent.1 ActiveX control (isusweb.dll 6.1.100.61372) in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the DownloadAndExecute method.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Elazar · htmlremotewindows

https://www.exploit-db.com/exploits/4913

View Code ZIP pw:eip

References (5)

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/4913

[Third Party Advisory] http://securityreason.com/securityalert/4425

[Third Party Advisory] http://www.vupen.com/english/advisories/2008/0145

[Vendor Advisory] http://secunia.com/advisories/28496

[Exploit] http://www.securityfocus.com/bid/27279

Scores

EPSS 0.0891

EPSS Percentile 92.6%

Details

Status published

Products (1)

acresso/flexnet_connect 6.1

Published Oct 15, 2008

Tracked Since Feb 18, 2026