Описание
The NCTAudioEditor2 ActiveX control in NCTWMAFile2.dll 2.6.2.157, as distributed in NCTAudioEditor and NCTAudioStudio 2.7, allows remote attackers to overwrite arbitrary files via the CreateFile method.
Ссылки
- Vendor Advisory
- Exploit
- Vendor Advisory
- Vendor Advisory
- Exploit
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:nctsoft:nctaudioeditor:_nil_:*:*:*:*:*:*:*
cpe:2.3:a:nctsoft:nctaudiostudio:2.7:*:*:*:*:*:*:*
EPSS
Процентиль: 93%
0.09812
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
The NCTAudioEditor2 ActiveX control in NCTWMAFile2.dll 2.6.2.157, as distributed in NCTAudioEditor and NCTAudioStudio 2.7, allows remote attackers to overwrite arbitrary files via the CreateFile method.
EPSS
Процентиль: 93%
0.09812
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-20