5 matches found
Code injection
A certain ActiveX control in NCTWavChunksEditor2.dll 2.6.1.148 in NCTAudioStudio NCTAudioStudio2 2.7, as used by Sienzo DMM and probably other products, allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the CreateFile method, a different product...
CVE-2007-3493
A certain ActiveX control in NCTWavChunksEditor2.dll 2.6.1.148 in NCTAudioStudio NCTAudioStudio2 2.7, as used by Sienzo DMM and probably other products, allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the CreateFile method, a different product...
CVE-2007-3493
The CVE-2007-3493 entry concerns an ActiveX control in NCTWavChunksEditor2.dll 2.6.1.148 used by NCTAudioStudio (NCTAudioStudio2) 2.7, which allows remote attackers to create or overwrite arbitrary files by passing a full pathname to CreateFile. Connected sources also reference CVE-2007-3400, des...
CVE-2007-3400
CVE-2007-3400 affects the NCTAudioEditor2 ActiveX control in NCTWMAFile2.dll 2.6.2.157, as distributed with NCTAudioEditor and NCTAudioStudio 2.7. The vulnerability allows remote attackers to overwrite arbitrary files via the CreateFile method. The CVSSv2 base score is 9.3 (HIGH) with Network att...
[Full-disclosure] Secunia Research: NCTsoft Products NCTAudioFile2 ActiveX Control Buffer Overflow
====================================================================== Secunia Research 24/01/2007 - NCTsoft Products NCTAudioFile2 ActiveX Control Buffer Overflow - ====================================================================== Table of Contents Affected...