📦

deployment_wizard

Name: deployment_wizard
Author: WatchStack

Vendor: hummingbird

Login to add this product to WatchStack

Actively Exploited 0 CISA KEV List

PoC / Exploits 1 Code Available

Total RCEs 0 Remote Access

Total CVEs 1 Total Indexed

Avg. EPSS 24.53% Exploit Prob.

Latest CVE CVE-2008-4728 Oct 24

Security Vulnerability Index

Page 1 / 1

9.3 CVSS

CVE-2008-4728

Exploit Found

Multiple insecure method vulnerabilities in the DeployRun.DeploymentSetup.1 (DeployRun.dll) ActiveX control 10.0.0.44 in Hummingbird Deployment Wizard 2008 allow remote attackers to execute arbitrary programs via the (1) Run and (2) PerformUpdateAsync methods, and (3) modify arbitrary registry values via the SetRegistryValueAsString method. NOTE: the SetRegistryValueAsString method could be leveraged for code execution by specifying executable file values to Startup folders.

EPSS: 24.53%

Severity: HIGH

Oct 24, 2008

Displaying 1 of 1 Total Entries

1

Total 1 Sections