VDB
CVE-2008-3558
CVE-2008-3558
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Stack-based buffer overflow in the WebexUCFObject ActiveX control in atucfobj.dll in Cisco WebEx Meeting Manager before 20.2008.2606.4919 allows remote attackers to execute arbitrary code via a long argument to the NewObject method.
EPSS 79.90% · 99.1th percentile
Risk Scores
CVSS 2.0
9.300000190734863
EPSS Score
79.90%
99.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| cisco | webex_meeting_manager | 20.2008.2601.4928 |
Exploit Intelligence
- CIRCL seen: CVE-2008-3558 (circl-sighting)
- CIRCL confirmed: CVE-2008-3558 (circl-sighting)
- CIRCL confirmed: CVE-2008-3558 (circl-sighting)
- CIRCL seen: CVE-2008-3558 (circl-sighting)
- CIRCL seen: CVE-2008-3558 (circl-sighting)
- 30578 (circl)
- 1020641 (circl)
- 20080814 Vulnerability in Cisco WebEx Meeting Manager ActiveX Control (circl)
- 31397 (circl)
- 20080806 Webex atucfobj Module ActiveX Control Buffer Overflow Vulnerability (circl)
…and 4 more exploits
Timeline
- Aug 6, 2008 CVE Published
- Aug 10, 2008 PoC Published
- Sep 20, 2010 PoC Published
- May 29, 2018 PoC Published
- Feb 4, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- 6220 exploit
- VU#661827 third-party-advisory
- webex-webexucfobject-bo(44250) vdb
- 30578 vdb
- ADV-2008-2319 vdb
- 20080806 Webex atucfobj Module ActiveX Control Buffer Overflow Vulnerability mailing-list
- 1020641 vdb
- 20080814 Vulnerability in Cisco WebEx Meeting Manager ActiveX Control vendor-advisory
- 31397 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2008-3558 advisory