Acresso Intallshield Update Agent : Security vulnerabilities, CVEs

CVE-2008-1093

Acresso InstallShield Update Agent does not properly verify the authenticity of Rule Scripts obtained from GetRules.asp web pages on FLEXnet Connect servers, which allows remote man-in-the-middle attackers to execute arbitrary VBScript code via Trojan horse Rules.

Max CVSS

9.3

EPSS Score

0.44%

Published

2008-09-18

Updated

2018-10-11

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

Acresso » Intallshield Update Agent : Security Vulnerabilities, CVEs,

CVE-2008-1093