CVE-2007-4067

2007-07-3017:00:00

mitre

www.cve.org

6.8 Medium

AI Score

Confidence

High

0.047 Low

EPSS

Percentile

92.7%

JSON

Absolute path traversal vulnerability in the clInetSuiteX6.clWebDav ActiveX control in CLINETSUITEX6.OCX in Clever Internet ActiveX Suite 6.2 allows remote attackers to create or overwrite arbitrary files via a full pathname in the second argument to the GetToFile method. NOTE: some of these details are obtained from third party information.

References

secunia.com/advisories/26213

www.attrition.org/pipermail/vim/2007-July/001729.html

www.securityfocus.com/bid/25063

www.vupen.com/english/advisories/2007/2659

exchange.xforce.ibmcloud.com/vulnerabilities/35590

www.exploit-db.com/exploits/4226