Detections
Analytics
Evernote < 5.8.1 ActiveX Control Arbitrary File Overwrite
high Nessus Plugin ID 85448
Language:
Synopsis
The remote Windows host has an ActiveX control installed that is affected by a file overwrite vulnerability.Description
The version of Evernote installed on the remote Windows host is prior to 5.8.1. It is, therefore, affected by an arbitrary file overwrite vulnerability in the EvernoteIE.dll ActiveX control due to using the writeFileContent(), LoadFile(), and ReadFileContent() methods in an insecure manner. A remote, unauthenticated attacker can exploit this by tricking a user into opening a specially crafted web page, allowing the attacker to read and overwrite arbitrary files.Solution
Upgrade to Evernote 5.8.1 or later. Alternatively, disable the ActiveX control.See Also
https://discussion.evernote.com/topic/79359-evernote-for-windows-581/
Plugin Details
Severity: High
ID: 85448
File Name: evernote_5_8.nasl
Version: 1.4
Type: local
Agent: windows
Family: Windows
Published: 8/17/2015
Updated: 8/8/2018
Supported Sensors: Nessus Agent, Nessus
Vulnerability Information
CPE: cpe:/a:evernote:evernote
Required KB Items: SMB/Registry/Enumerated, installed_sw/Evernote
Patch Publication Date: 12/18/2014
Vulnerability Publication Date: 7/11/2015