CVE-2008-4050

high

Description

A certain ActiveX control in fwRemoteCfg.dll 3.3.3.1 in Friendly Technologies FriendlyPPPoE Client 3.0.0.57 allows remote attackers to (1) create and read arbitrary registry values via the RegistryValue method, and (2) read arbitrary files via the GetTextFile method.

References

https://www.exploit-db.com/exploits/6334

https://exchange.xforce.ibmcloud.com/vulnerabilities/44787

http://www.securityfocus.com/bid/30939

http://securityreason.com/securityalert/4244

http://secunia.com/advisories/31644

Details

Source: Mitre, NVD

Published: 2008-09-11

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

EPSS

EPSS: 0.06619