CVE-2007-3487

Absolute path traversal in a certain ActiveX control in hpqxml.dll 2.0.0.133 in Hewlett-Packard HP Photo Digital Imaging allows remote attackers to create or overwrite arbitrary files via the argument to the saveXMLAsFile method...

CVE-2007-3487

CVE-2007-3487 describes an absolute path traversal in HP Photo Digital Imaging’s hpqxml.dll (version 2.0.0.133) ActiveX control. The vulnerability allows remote attackers to create or overwrite arbitrary files by supplying bytes to the saveXMLAsFile method. The impact is partial confidentiality a...

CVE-2007-3487

Absolute path traversal in a certain ActiveX control in hpqxml.dll 2.0.0.133 in Hewlett-Packard HP Photo Digital Imaging allows remote attackers to create or overwrite arbitrary files via the argument to the saveXMLAsFile method...

hpdi-write.txt

:. GOODFELLAS Security Research TEAM .: :. http://goodfellas.shellcode.com.ar .: GoodFellas Security Research Team Technical Detail saveXMLAsFile method receives a filename as an argument, with this format "c:\path\file". Proof of C...

HP Photo Digital Imaging HPQXML.DLL任意文件覆盖漏洞

HP Photo Digital Imaging是一款图象处理软件。 HP Photo Digital Imaging HPQXML.DLL ActiveX控件不正确调用方法，远程攻击者可以利用漏洞覆盖系统任意文件，造成拒绝服务或任意代码执行。 问题存在于HPQXML.DLL中的ActiveX控件，由于不安全调用"saveXMLAsFile"方法，构建恶意的WEB页，诱使用户访问可导致覆盖系统任意文件，造成拒绝服务或任意代码执行。 HP HP Photo Digital Imaging hpqxml.dll 2.0.0.133 目前没有解决方案提供：...

HP Digital Imaging (hpqxml.dll 2.0.0.133) Arbitary Data Write Exploit

No description provided by source. :. GOODFELLAS Security Research TEAM .: :. http://goodfellas.shellcode.com.ar .: !-- hpqxml.dll 2.0.0.133 from HP Digital Imaging Arbitary Data Write =============================================== Internal ID: VULWAR200706275. Introduction hpqxml.dll is a libra...

HP Photo Digital Imaging ActiveX unauthorized access

Unsafe saveXMLAsFile method in hpqxml.dll...

HP Digital Imaging hpqxml.dll 2.0.0.133 - Arbitrary Data Write

HP Digital Imaging hpqxml.dll 2.0.0.133 - Arbitrary Data Write :. GOODFELLAS Security Research TEAM .: :. http://goodfellas.shellcode.com.ar .: GoodFellas Security Research Team Technical Detail saveXMLAsFile method receives a filename as an argument, with this format "c:\path\file". Proof of...

HP Digital Imaging 'hpqxml.dll 2.0.0.133' - Arbitrary Data Write

:. GOODFELLAS Security Research TEAM .: :. http://goodfellas.shellcode.com.ar .: GoodFellas Security Research Team Technical Detail saveXMLAsFile method receives a filename as an argument, with this format "c:\path\file". Proof of Concept -- Hpqxml.dll...

HP Digital Imaging (hpqxml.dll 2.0.0.133) Arbitary Data Write Exploit

Exploit for unknown platform in category remote exploits ===================================================================== HP Digital Imaging hpqxml.dll 2.0.0.133 Arbitary Data Write Exploit ===================================================================== :. GOODFELLAS Security Research...