Lucene search

[email protected]NVD:CVE-2007-4982

HistorySep 19, 2007 - 6:17 p.m.

CVE-2007-4982

2007-09-1918:17:00

CWE-22

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

Confidence

Low

EPSS

0.058

Percentile

93.4%

JSON

Multiple absolute path traversal vulnerabilities in the MW6QRCode.QRCode.1 ActiveX control in MW6QRCode.dll in MW6 Technologies QRCode ActiveX 3.0.0.1 and earlier allow remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the (1) SaveAsBMP or (2) SaveAsWMF method. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd

Node

mw6_technologiesqrcode_activexRange≤3.0.0.1

VendorProductVersionCPE
mw6_technologiesqrcode_activex*cpe:2.3:a:mw6_technologies:qrcode_activex:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mw6_technologies	qrcode_activex	*	cpe:2.3:a:mw6_technologies:qrcode_activex::::::::

References

osvdb.org/37914

osvdb.org/37915

secunia.com/advisories/26836

www.securityfocus.com/bid/25702

www.shinnai.altervista.org/exploits/OREurGhGgAtlCT8J2jSY.html

www.vupen.com/english/advisories/2007/3195

exchange.xforce.ibmcloud.com/vulnerabilities/36666

www.exploit-db.com/exploits/4420

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

Confidence

Low

EPSS

0.058

Percentile

93.4%

JSON

Related for NVD:CVE-2007-4982

exploitdb1 prion1 cvelist1 cve1