Lucene search

[email protected]CVE-2007-1120

HistoryFeb 27, 2007 - 2:28 a.m.

CVE-2007-1120

2007-02-2702:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

security

vulnerability

teechart

activex

remote attack

nvd

cve-2007-1120

6.7 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

83.8%

JSON

The (1) Import.LoadFromURL and (2) Export.asText.SaveToFile functions in TeeChart Pro ActiveX control (TeeChart7.ocx) allow remote attackers to download a crafted .tee file to an arbitrary location. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CPENameOperatorVersion
steema_software:teechart_prosteema software teechart proeq7.0.1.3

CPE	Name	Operator	Version
steema_software:teechart_pro	steema software teechart pro	eq	7.0.1.3

References

osvdb.org/33534

secunia.com/advisories/24263

www.securityfocus.com/bid/22689

exchange.xforce.ibmcloud.com/vulnerabilities/32694

6.7 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

83.8%

JSON

Related for CVE-2007-1120

securityvulns1 prion1