Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 1:54 a.m.6 views

CVE-2011-5289

The SaveDecrypted method in the ChilkatCrypt2.ChilkatOmaDrm.1 ActiveX control in ChilkatCrypt2.dll in aTube Catcher 2.3.570 allows remote attackers to write to arbitrary files via a pathname in the argument...

6.4CVSS7.2AI score0.0225EPSS
Exploits1References1
NVD
NVD
added 2015/01/01 2:59 a.m.17 views

CVE-2011-5289

The SaveDecrypted method in the ChilkatCrypt2.ChilkatOmaDrm.1 ActiveX control in ChilkatCrypt2.dll in aTube Catcher 2.3.570 allows remote attackers to write to arbitrary files via a pathname in the argument...

6.4CVSS6.8AI score0.0225EPSS
Exploits1References1
Cvelist
Cvelist
added 2015/01/01 2:0 a.m.22 views

CVE-2011-5289

The SaveDecrypted method in the ChilkatCrypt2.ChilkatOmaDrm.1 ActiveX control in ChilkatCrypt2.dll in aTube Catcher 2.3.570 allows remote attackers to write to arbitrary files via a pathname in the argument...

6.8AI score0.0225EPSS
Exploits1References1
CVE
CVE
added 2015/01/01 2:0 a.m.39 views

CVE-2011-5289

The CVE-2011-5289 entry concerns the SaveDecrypted method of the ChilkatCrypt2.ChilkatOmaDrm.1 ActiveX control in ChilkatCrypt2.dll used by aTube Catcher 2.3.570. The vulnerability allows remote attackers to write to arbitrary files by supplying a pathname in the argument to SaveDecrypted. Docume...

6.4CVSS7AI score0.0225EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns
added 2011/07/11 12:0 a.m.21 views

aTube Catcher ActiveX insecure method

Isnecure ChilkatCrypt2.ChilkatOmaDrm.1 method allows to corrupt files...

2.5AI score
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2011/07/07 12:0 a.m.24 views

aTube Catcher 2.3.570 Insecure Method

Vulnerability ID: HTB23013 Reference: http://www.htbridge.ch/advisory/atubecatcheractivexcontrolsavedecryptedinsecuremethod.html Product: aTube Catcher Vendor: Diego Uscanga http://atube-catcher.dsnetwb.com Vulnerable Version: 2.3.570 and probably prior Tested on: 2.3.570 Vendor Notification: 01...

7AI score
Exploits0
n0where
n0where
added 2010/11/07 8:41 p.m.48 views

Injecting Fake Updates: Evilgrade

Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates. It comes with pre-made binaries agents, a working default configuration for fast pentests, and has it’s own WebServer and DNSServer modules. Easy to set up new...

0.8AI score
Exploits0References1
Rows per page
Query Builder