cpe:/a:microsoft:office_snapshot_viewer_activex:office2000 cpe:/a:microsoft:office_snapshot_viewer_activex:office_2003 cpe:/a:microsoft:office_snapshot_viewer_activex:office_xp CVE-2008-2463 2008-07-07T19:41:00.000-04:00 2017-09-28T21:31:10.880-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-07-08T11:21:00.000-04:00 ALLOWS_OTHER_ACCESS SECTRACK 1020433 BID 30114 SECUNIA 30883 EXPLOIT-DB 6124 VUPEN ADV-2008-2012 HP HPSBST02360 IAVM IAVM:2008-A-0056 HP SSRT080117 CERT TA08-189A CERT TA08-225A CERT-VN VU#837785 CONFIRM http://www.microsoft.com/technet/security/advisory/955179.mspx XF microsoft-snapshotviewer-code-execution(43613) The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attackers to download arbitrary files to a client machine via a crafted HTML document or e-mail message, probably involving use of the SnapshotPath and CompressedPath properties and the PrintSnapshot method. NOTE: this can be leveraged for code execution by writing to a Startup folder.