Lucene search
PRIOn knowledge basePRION:CVE-2007-3168HistoryJun 11, 2007 - 10:30 p.m.
Design/Logic Flaw
2007-06-1122:30:00
PRIOn knowledge base
www.prio-n.com
1
A certain ActiveX control in the EDraw Office Viewer Component (edrawofficeviewer.ocx) 4.0.5.20, and other versions before 5.0, allows remote attackers to delete arbitrary files via the DeleteLocalFile method.
| CPE | Name | Operator | Version |
|---|---|---|---|
| office_viewer_component | eq | 4.0.5.20 | |
| office_viewer_component | le | 5.0 |
References
osvdb.org/36044
secunia.com/advisories/25418
shinnai.altervista.org/viewtopic.php?id=42&t_id=31
www.ocxt.com/archives/28
www.securityfocus.com/bid/24230
www.vupen.com/english/advisories/2007/1992
exchange.xforce.ibmcloud.com/vulnerabilities/34588
moaxb.blogspot.com/2007/05/moaxb-28-edraw-office-viewer-component.html
www.exploit-db.com/exploits/4010
Related
cve
cve
CVE-2007-3168
2007-06-11 22:30:00
CVE-2007-4420
2007-08-18 21:17:00
nvd
nvd
CVE-2007-3168
2007-06-11 22:30:00
CVE-2007-4420
2007-08-18 21:17:00
cvelist
cvelist
CVE-2007-3168
2007-06-11 22:00:00
CVE-2007-4420
2007-08-18 21:00:00
nessus
nessus
Office Viewer Component < 5.0 Multiple Vulnerabilities
2007-09-10 00:00:00
prion
prion
Path traversal
2007-08-18 21:17:00