Lucene search
PRIOn knowledge basePRION:CVE-2007-3493HistoryJun 29, 2007 - 6:30 p.m.
Code injection
2007-06-2918:30:00
PRIOn knowledge base
www.prio-n.com
3
A certain ActiveX control in NCTWavChunksEditor2.dll 2.6.1.148 in NCTAudioStudio (NCTAudioStudio2) 2.7, as used by Sienzo DMM and probably other products, allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the CreateFile method, a different product than CVE-2007-3400.
| CPE | Name | Operator | Version |
|---|---|---|---|
| internet_explorer | eq | 7.0 | |
| nctaudiostudio | eq | 2.7 | |
| nctwavchunkseditor2.dll | eq | 2.6.1.148 |
References
osvdb.org/37673
secunia.com/advisories/25851
www.securityfocus.com/bid/24656
www.shinnai.altervista.org/exploits/ntcwavchunkstxt.html
www.shinnai.altervista.org/index.php?mod=02_Forum&group=Exploits&argument=Remote&topic=1182845325.ff.php&page=last
www.vupen.com/english/advisories/2007/2351
exchange.xforce.ibmcloud.com/vulnerabilities/35081
www.exploit-db.com/exploits/4109
Related
nvd
nvd
CVE-2007-3493
2007-06-29 18:30:00
CVE-2007-3400
2007-06-26 17:30:00
cvelist
cvelist
CVE-2007-3493
2007-06-29 18:00:00
CVE-2007-3400
2007-06-26 17:00:00
cve
cve
CVE-2007-3493
2007-06-29 18:30:00
CVE-2007-3400
2007-06-26 17:30:00
prion
prion
Design/Logic Flaw
2007-06-26 17:30:00