Unrated severityNVD Advisory· Published Dec 23, 2008· Updated Jun 16, 2026
CVE-2008-2434
CVE-2008-2434
Description
The Trend Micro HouseCall ActiveX control 6.51.0.1028 and 6.6.0.1278 in Housecall_ActiveX.dll allows remote attackers to download an arbitrary library file onto a client system via a "custom update server" argument. NOTE: this can be leveraged for code execution by writing to a Startup folder.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:trend_micro:housecall:6.51.0.1028:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:trend_micro:housecall:6.51.0.1028:*:*:*:*:*:*:*
- cpe:2.3:a:trend_micro:housecall:6.6.0.1278:*:*:*:*:*:*:*
- cpe:2.3:a:trend_micro:housecall:6.6:*:server:*:*:*:*:*
- Range: 6.51.0.1028, 6.6.0.1278
Patches
Vulnerability mechanics
References
10- esupport.trendmicro.com/support/viewxml.donvdVendor Advisory
- secunia.com/advisories/31337nvdVendor Advisory
- secunia.com/secunia_research/2008-32/nvdVendor Advisory
- www.kb.cert.org/vuls/id/541025nvdUS Government Resource
- osvdb.org/50941nvd
- securityreason.com/securityalert/4802nvd
- www.securityfocus.com/archive/1/499495/100/0/threadednvd
- www.securityfocus.com/bid/32965nvd
- www.vupen.com/english/advisories/2008/3464nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/47524nvd
News mentions
0No linked articles in our index yet.