Directory traversal vulnerability in the web player in NeoAxis NeoAxis web player 1.4 and earlier allows user-assisted remote attackers to write arbitrary files via a … (dot dot) in a filename in the neoaxis_web_application_win32.zip ZIP archive.
CPE | Name | Operator | Version |
---|---|---|---|
neoaxis_web_player | eq | 1.1 | |
neoaxis_web_player | eq | 1.3 | |
neoaxis_web_player | eq | 1.2 | |
neoaxis_web_player | le | 1.4 |