4 matches found
CVE-2011-5292
The EaseWeFtp.FtpLibrary ActiveX control in EaseWeFtp.ocx in Easewe FTP OCX 4.5.0.9 does not restrict access to certain methods, which allows remote attackers to execute arbitrary files via a pathname in the first argument to the 1 Execute or 2 Run method, 3 write to arbitrary files via a pathnam...
CVE-2011-5292
Affected product: Easewe FTP OCX 4.5.0.9, specifically the EaseWeFtp.ocx’s FtpLibrary ActiveX control. The vulnerability arises from insufficient access restrictions on methods (Execute, Run, CreateLocalFile, CreateLocalFolder, DeleteLocalFile), enabling a remote attacker to perform arbitrary fil...
CVE-2011-5292
The EaseWeFtp.FtpLibrary ActiveX control in EaseWeFtp.ocx in Easewe FTP OCX 4.5.0.9 does not restrict access to certain methods, which allows remote attackers to execute arbitrary files via a pathname in the first argument to the 1 Execute or 2 Run method, 3 write to arbitrary files via a pathnam...
Easewe FTP 4.5.0.9 Insecure Method
Vulnerability ID: HTB23015 Reference: http://www.htbridge.ch/advisory/easeweftpocxactivexcontrolexecuteinsecuremethod.html Product: Easewe FTP OCX ActiveX Control Vendor: Easewe Software http://www.ftpocx.com Vulnerable Version: 4.5.0.9 and probably prior Tested on: 4.5.0.9 Vendor Notification: 0...