CVE-2004-2663

Currently unrated

Key Information:

Vendor: IBM
Status: Egatherer
Vendor: CVE Published:; 31 December 2004

Summary

The (1) SetDebugging and (2) RunEgatherer methods in IBM Access Support eGatherer ActiveX control 2.0.0.16 allow remote attackers to create files with arbitrary content, as demonstrated by creating a .hta file in a Startup folder.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/16428

vdb-entryx_refsource_XF

http://www.eeye.com/html/research/advisories/AD20040615B....

x_refsource_MISC

http://marc.info/?l=bugtraq&m=108746693619324&w=2

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability Reserved
Aug 18, 2006
Vulnerability published
Dec 31, 2004