CVE-2008-1725
NONE
Published Apr 11, 200818y ago · Modified Jun 16, 20262w ago
Published Apr 11, 2008 18y ago
Last Modified Jun 16, 2026 2w ago
Description
The IBizEBank.FIProfile.1 ActiveX control in fiprofile20.ocx in IBiz E-Banking Integrator (formerly IBiz OFX Integrator) 2.0.2932 exposes the unsafe WriteOFXDataFile method, which allows remote attackers to overwrite arbitrary files via a full pathname in the argument. NOTE: some of these details are obtained from third party information.
Threat Intelligence
No active exploitation signals — not in CISA KEV and no EPSS score yet.
Exploit & Patch Status
Public Exploit Known
No Patch Available
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| nsoftware | ibiz_e-banking_integrator | 2.0.2932 | any |
References 5
- secunia.com http://secunia.com/advisories/29758
- osvdb.org http://www.osvdb.org/44393
- securityfocus.com http://www.securityfocus.com/bid/28700
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/41752
- exploit-db.com https://www.exploit-db.com/exploits/5416
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.