CVE-2008-5520

EPSS 0.29% · P53 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-5520

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

AhnLab V3 2008.12.4.1 and possibly 2008.9.13.0, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt extension, or (3) a .jpg extension, as demonstrated by a document containing a CVE-2006-5745 exploit.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

AhnLab MZ头信息文件绕过扫描漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

AhnLab V3 是一种综合安全应用程序，不仅可以对病毒及间谍软件进行扫描和治疗，还可以有效拦截黑客的入侵并阻断个人信息的泄漏，从而保护用户计算机和个人信息的安全。 AhnLab V3 2008.12.4.1版本和可能版本2008.9.13.0，当 Internet Explorer 6版本或7版本被使用时,远程攻击者通过先放置一个MZ头(又称"EXE info")，然后修改它们的文件名使它们：(1) 没有扩展名；(2)具有一个 .txt扩展名；(3)具有一个.jpg扩展名，例如包含CVE-2006-

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-5520

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-5520

Please Login to view more intelligence information

http://securityreason.com/securityalert/4723third-party-advisoryx_refsource_SREASON
https://exchange.xforce.ibmcloud.com/vulnerabilities/47435vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/498995/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/499043/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2008-5520

Same Patch Batch · n/a · 2008-12-12 · 49 CVEs total

CVE-2008-5555		Microsoft Internet Explorer XSS过滤机制绕过漏洞
CVE-2008-5487		TurnkeyForms Text Link Sales admin.php跨站脚本漏洞
CVE-2008-5489		ClipShare Pro 'channel_detail.php' SQL注入漏洞
CVE-2008-5493		Wholesale 'track.php' SQL注入漏洞
CVE-2008-5494		Joomla! Contact Information模块index.php SQL注入漏洞
CVE-2008-5495		GungHo LoadPrgAx ActiveX Control 未明漏洞
CVE-2008-5496		PozScripts Business Directory 'showcategory.php' SQL注入漏洞
CVE-2008-5497		BandSite CMS Cookie 绕过认证和权限提升漏洞
CVE-2008-5492		VeryDOC PDFView ActiveX组件堆溢出漏洞
CVE-2008-5556		Microsoft Internet Explorer 8.0绕过XSS保护机制漏洞
CVE-2008-5486		TurnkeyForms Text Link Sales admin.php SQL注入漏洞
CVE-2008-5554		Microsoft Internet Explorer XSS过滤机制绕过漏洞
CVE-2008-5553		Microsoft Internet Explorer XSS过滤机制绕过漏洞
CVE-2008-5552		Microsoft Internet Explorer XSS过滤机制绕过漏洞
CVE-2008-5551		Microsoft Internet Explorer XSS过滤器双重注入漏洞
CVE-2008-5550		Sun Java Web Console console/faces/jsp/login/BeginLogin.jsp URL重定向漏洞
CVE-2008-5549		Sun Java System Portal Server Web Console 信息泄露漏洞
CVE-2008-5548		VirusBuster MZ头信息文件绕过扫描漏洞
CVE-2008-5547		HAURI ViRobot MZ头信息文件绕过扫描漏洞
CVE-2008-5546		VirusBlokAda VBA32 MZ头信息文件绕过扫描漏洞

Showing top 20 of 49 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2008-5520

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2008-5520

I. Basic Information for CVE-2008-5520

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-5520

III. Intelligence Information for CVE-2008-5520

Same Patch Batch · n/a · 2008-12-12 · 49 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2008-5520

Leave a comment