Unrated severityNVD Advisory· Published Apr 11, 2008· Updated Jun 16, 2026
CVE-2008-1724
CVE-2008-1724
Description
Stack-based buffer overflow in the IActiveXTransfer.FileTransfer method in the SecureTransport FileTransfer ActiveX control in vcst_en.dll 1.0.0.5 in Tumbleweed SecureTransport Server before 4.6.1 Hotfix 20 allows remote attackers to execute arbitrary code via a long remoteFile parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:tumbleweed:securetransport_server_app:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:tumbleweed:securetransport_server_app:*:*:*:*:*:*:*:*range: <=4.6.1
- (no CPE)range: <4.6.1 Hotfix 20
- Range: 1.0.0.5
Patches
Vulnerability mechanics
References
8- securityreason.com/securityalert/3806nvdExploit
- www.securityfocus.com/bid/28662nvdExploit
- secunia.com/advisories/29717nvdVendor Advisory
- www.aushack.com/200708-tumbleweed.txtnvd
- www.securityfocus.com/archive/1/490536/100/0/threadednvd
- www.vupen.com/english/advisories/2008/1165/referencesnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/41692nvd
- www.exploit-db.com/exploits/5398nvd
News mentions
0No linked articles in our index yet.