Macrovision FlexNet DownloadManager Insecure Methods

  Severity: MEDIUM
  CVE Identifier: CVE-2008-4586
  Advisory Date: JUL 21, 2015

  DESCRIPTION

Macrovision FlexNet DownloadManager does not properly validate arguments passed to methods in its ActiveX control. This vulnerability could be exploited by attackers to carry out remote code execution attacks.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1001292
  Trend Micro Deep Security DPI Rule Name: 1001292 - Microsoft Internet Explorer Macrovision FlexNet DownloadAndExecute Insecure Method

  AFFECTED SOFTWARE AND VERSION

  • Microsoft Internet Explorer