Evernote < 5.8.1 ActiveX Control Arbitrary File Overwrite

High Nessus Plugin ID 85448


The remote Windows host has an ActiveX control installed that is affected by a file overwrite vulnerability.


The version of Evernote installed on the remote Windows host is prior to 5.8.1. It is, therefore, affected by an arbitrary file overwrite vulnerability in the EvernoteIE.dll ActiveX control due to using the writeFileContent(), LoadFile(), and ReadFileContent() methods in an insecure manner. A remote, unauthenticated attacker can exploit this by tricking a user into opening a specially crafted web page, allowing the attacker to read and overwrite arbitrary files.


Upgrade to Evernote 5.8.1 or later. Alternatively, disable the ActiveX control.

See Also


Plugin Details

Severity: High

ID: 85448

File Name: evernote_5_8.nasl

Version: $Revision: 1.2 $

Type: local

Agent: windows

Family: Windows

Published: 2015/08/17

Modified: 2015/08/18

Dependencies: 58290, 13855

Risk Information

Risk Factor: High


Base Score: 9.3

Temporal Score: 7.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:ND

Vulnerability Information

CPE: cpe:/a:evernote:evernote

Required KB Items: SMB/Registry/Enumerated, installed_sw/Evernote

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2014/12/18

Vulnerability Publication Date: 2015/07/11

Reference Information

OSVDB: 124449, 124450, 124451