EDraw Flowchart ActiveX Control 2.0 - Insecure Method

----------------------------------------------------------------------------------------------------- EDraw Flowchart ActiveX Control EDImage.ocx v. 2.0.2005.1104 "HttpDownloadFile" Insecure Method url: http://www.anydraw.com Author: shinnai mail: shinnaiatautisticidotorg site:...

edrawflow-insecure.txt

----------------------------------------------------------------------------------------------------- EDraw Flowchart ActiveX Control EDImage.ocx v. 2.0.2005.1104 "HttpDownloadFile" Insecure Method url: http://www.anydraw.com Author: shinnai mail: shinnaiatautisticidotorg site:...

EDraw Flowchart ActiveX Control 2.0 - Insecure Method

EDraw Flowchart ActiveX Control 2.0 - Insecure Method ----------------------------------------------------------------------------------------------------- EDraw Flowchart ActiveX Control EDImage.ocx v. 2.0.2005.1104 "HttpDownloadFile" Insecure Method url: http://www.anydraw.com Author: shinnai...

EDraw Flowchart ActiveX Control 2.0 Insecure Method Exploit

Exploit for unknown platform in category remote exploits =========================================================== EDraw Flowchart ActiveX Control 2.0 Insecure Method Exploit ===========================================================...

Office Viewer Component < 5.0 Multiple Vulnerabilities

The remote host contains the Office Viewer Component, an ActiveX control for working with Microsoft Office documents. The version of this control installed on the remote host contains a buffer overflow in its 'HttpDownloadFile' method that could be exploited to execute arbitrary code remotely if ...

Office Viewer Component ActiveX (officeviewer.ocx) HttpDownloadFile Method Traversal Arbitrary File Overwrite

The remote host contains the Office Viewer Component, an ActiveX control for working with Microsoft Office documents. The version of this control installed on the remote host reportedly contains an insecure method, 'HttpDownloadFile'. If an attacker can trick a user on the affected host into...

CVE-2007-4420

Absolute path traversal vulnerability in a certain ActiveX control in officeviewer.ocx 5.1.199.1 in EDraw Office Viewer Component 5.1 allows remote attackers to create or overwrite arbitrary files via a full pathname in the second argument to the HttpDownloadFile method, a different vulnerability...

CVE-2007-4420

Technical details for CVE-2007-4420 are not publicly available in the provided documents. Monitor for updates.

edraw-insecure.txt

-------------------------------------------------------------------------------------------------------------- 0-day EDraw Office Viewer Component 5.1 officeviewer.ocx v. 5.1.199.1 "HttpDownloadFile" Insecure Method url: http://www.ocxt.com/officeviewer.php author: shinnai mail:...

EDraw Office Viewer Component 5.1 HttpDownloadFile() Insecure Method

No description provided by source. pre codespan style="font: 10pt Courier New;"span class="general1-symbol"--------------------------------------------------------------------------------------------------------------...

EDraw Office Viewer Component 5.1 - HttpDownloadFile() Insecure Method

-------------------------------------------------------------------------------------------------------------- 0-day EDraw Office Viewer Component 5.1 officeviewer.ocx v. 5.1.199.1 "HttpDownloadFile" Insecure Method url: http://www.ocxt.com/officeviewer.php author: shinnai mail:...

EDraw Office Viewer Component 5.1 - HttpDownloadFile() Insecure Method

EDraw Office Viewer Component 5.1 - HttpDownloadFile Insecure Method -------------------------------------------------------------------------------------------------------------- 0-day EDraw Office Viewer Component 5.1 officeviewer.ocx v. 5.1.199.1 "HttpDownloadFile" Insecure Method url:...

EDraw Office Viewer Component 5.1 HttpDownloadFile() Insecure Method

No description provided by source. pre codespan style="font: 10pt Courier New;"span class="general1-symbol"-------------------------------------------------------------------------------------------------------------- b0-day EDraw Office Viewer Component 5.1 officeviewer.ocx v. 5.1.199.1...

EDraw Office Viewer Component 5.1 HttpDownloadFile() Insecure Method

Exploit for unknown platform in category remote exploits ==================================================================== EDraw Office Viewer Component 5.1 HttpDownloadFile Insecure Method ====================================================================...

Buffer overflow

Buffer overflow in a certain ActiveX control in the EDraw Office Viewer Component edrawofficeviewer.ocx 4.0.5.20, and other versions before 5.0, allows remote attackers to cause a denial of service Internet Explorer 7 crash or execute arbitrary code via a long first argument to the HttpDownloadFi...

Buffer overflow

Multiple buffer overflows in the Office Viewer OCX ActiveX control oa.ocx 3.2 allow remote attackers to cause a denial of service crash or possibly execute arbitrary code via a long argument to the 1 HttpDownloadFile, 2 Open, 3 OpenWebFile, 4 DoOleCommand, 5 FTPDownloadFile, 6 FTPUploadFile, 7...

Office Viewer OCX 3.2.0.5 Multiple Methods Denial of Service Exploit

No description provided by source. span style="font: 14pt Courier New;"p align="center"b2007/05/04/b/p/span pre codespan style="font: 10pt Courier New;"span class="general1-symbol"-----------------------------------------------------------------------------...

Design/Logic Flaw

The WordOCX ActiveX control in WordViewer.ocx 3.2.0.5 allows remote attackers to cause a denial of service Internet Explorer 7 crash via a long 1 DoOleCommand, 2 FTPDownloadFile, 3 FTPUploadFile, 4 HttpUploadFile, 5 GotoPage, 6 Save, 7 SaveWebFile, 8 HttpDownloadFile, 9 Open, 10 OpenWebFile, 11...

CVE-2007-2496

The WordOCX ActiveX control in WordViewer.ocx 3.2.0.5 allows remote attackers to cause a denial of service Internet Explorer 7 crash via a long 1 DoOleCommand, 2 FTPDownloadFile, 3 FTPUploadFile, 4 HttpUploadFile, 5 GotoPage, 6 Save, 7 SaveWebFile, 8 HttpDownloadFile, 9 Open, 10 OpenWebFile, 11...

word-ocx.txt

2007/05/03 ----------------------------------------------------------------------------- WordViewer.ocx v. 3.2.0.5 multiple methods Denial of Service url: http://www.officeocx.com/ price: from €63.95 update to last version to €1,585.95 Royalty author: shinnai mail: shinnaiatautisticidotorg site:...