Описание
Absolute path traversal vulnerability in a certain ActiveX control in CkString.dll 1.1 and earlier in CHILKAT ASP String allows remote attackers to create or overwrite arbitrary files via a full pathname in the first argument to the SaveToFile method, a different vulnerability than CVE-2007-3633.
Комментарий
More detailed information listed here: http://www.securityfocus.com/bid/25205/info
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:chilkat_software:asp_string:1.1:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04882
Низкий
4.3 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Absolute path traversal vulnerability in a certain ActiveX control in CkString.dll 1.1 and earlier in CHILKAT ASP String allows remote attackers to create or overwrite arbitrary files via a full pathname in the first argument to the SaveToFile method, a different vulnerability than CVE-2007-3633.
EPSS
Процентиль: 89%
0.04882
Низкий
4.3 Medium
CVSS2
Дефекты
NVD-CWE-Other