2 matches found
CVE-2007-4983
CVE-2007-4983 describes a directory-traversal in the JetAudio.Interface.1 ActiveX control (JetFlExt.dll) used by JetAudio 7.0.3 Basic and 7.0.3.3016. By sending a .\ to the second argument of the DownloadFromMusicStore method, an attacker can create or overwrite arbitrary local files. The note in...
CVE-2007-4983
Directory traversal vulnerability in the JetAudio.Interface.1 ActiveX control in JetFlExt.dll in jetAudio 7.0.3 Basic and 7.0.3.3016 allows remote attackers to create or overwrite arbitrary local files via a ..\ dot dot backslash in the second argument to the DownloadFromMusicStore method. NOTE:...