What is CVE-2008-2463?

CVE-2008-2463 is a vulnerability in N/a. Published 2008-07-07.

Is CVE-2008-2463 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2008-2463

The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attackers to download arbitrary files to a clie…

EPSS: 0.841 (99.3th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

TA08-189A (x_refsource_CERT, third-party-advisory)
6124 (exploit, x_refsource_EXPLOIT-DB)
TA08-225A (x_refsource_CERT, third-party-advisory)
ADV-2008-2012 (vdb-entry, x_refsource_VUPEN)
HPSBST02360 (x_refsource_HP, vendor-advisory)
www.microsoft.com/technet/security/advisory/955179.mspx (x_refsource_CONFIRM)
VU#837785 (x_refsource_CERT-VN, third-party-advisory)
30883 (x_refsource_SECUNIA, third-party-advisory)
oval:org.mitre.oval:def:6120 (x_refsource_OVAL, signature, vdb-entry)
microsoft-snapshotviewer-code-execution(43613) (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2008-2463?: CVE-2008-2463 is a vulnerability in N/a. Published 2008-07-07.
Is CVE-2008-2463 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.