CVE-2007-2644

Опубликовано: 13 мая 2007

Источник: nvd

CVSS2: 9.4

EPSS Низкий

Описание

A certain ActiveX control in Morovia Barcode ActiveX Professional 3.3.1304 allows remote attackers to overwrite arbitrary files by calling the Save method with an arbitrary filename.

Ссылки

http://moaxb.blogspot.com/2007/05/morovia-barcode-activex-professional.html
http://osvdb.org/37786
http://www.securityfocus.com/bid/23934
http://www.shinnai.altervista.org/viewtopic.php?id=42&t_id=13
https://exchange.xforce.ibmcloud.com/vulnerabilities/34248
https://www.exploit-db.com/exploits/3899
http://moaxb.blogspot.com/2007/05/morovia-barcode-activex-professional.html
http://osvdb.org/37786
http://www.securityfocus.com/bid/23934
http://www.shinnai.altervista.org/viewtopic.php?id=42&t_id=13
https://exchange.xforce.ibmcloud.com/vulnerabilities/34248
https://www.exploit-db.com/exploits/3899

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:morovia:barcode_activex_control:3.3.1304:*:professional:*:*:*:*:*

EPSS

Процентиль: 92%

0.09004

Низкий

9.4 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-58xq-rpm3-xwc2

github

почти 4 года назад