Release DateDec 16, 2011 |
Severityhigh |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates a possible attempt to exploit an Arbitrary File Download vulnerability in Microsoft Office Snapshot Viewer ActiveX control.The vulnerability is located in the "snapview.ocx" ActiveX control through misuse of the "SnapshotPath" and "CompressedPath" properties. It may allow remote attackers to download files to arbitrary locations. |
Affected ProductsSnapshot Viewer for Microsoft AccesssMicrosoft Office Access 2000 Microsoft Office Access 2002 Microsoft Office Access 2003 |
Recommended ActionsRefer to the vendor's web site for the suggested workaround.http://www.microsoft.com/technet/security/advisory/955179.mspx |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2008-2463 |
