EUVD-2007-3653

Malware in sbrugna...

EUVD-2007-2717

Malware in sbrugna...

CVE-2011-5290

The SaveToFile method in the UniBasicPack.UniTextBox ActiveX control in UniBasic100EDA1811C.ocx in IDrive Online Backup 3.4.0 allows remote attackers to write to arbitrary files via a pathname in the first argument...

CVE-2011-5290

Technical summary (CVE-2011-5290): The vulnerability affects IDrive Online Backup 3.4.0, specifically the UniBasic100_EDA1811C.ocx’s UniBasicPack.UniTextBox ActiveX control. The SaveToFile method can be abused to write to arbitrary files by supplying a pathname as the first argument. This is a re...

CVE-2011-5290

The SaveToFile method in the UniBasicPack.UniTextBox ActiveX control in UniBasic100EDA1811C.ocx in IDrive Online Backup 3.4.0 allows remote attackers to write to arbitrary files via a pathname in the first argument...

Arbitrary program execution vulnerability in TrendLink ActiveX control

Overview TrendLink provided by Canary Labs is a tool to help visualize data for analysis. The SaveToFile method provided in the ActiveX control in TrendLink contains a vulnerability where file creation is not properly restricted. Security Research and Service Institute - Information and...

Quest Toad for Oracle Explain Plan Display ActiveX Control (QExplain2.dll 6.6.1.1115) Remote File Creation / Overwrite PoC

No description provided by source. !-- Quest Toad for Oracle Explain Plan Display ActiveX Control QExplain2.dll 6.6.1.1115 Remote File Creation / Overwrite vendor site: http://www.quest.com/ file tested: QuestToad-Development-Suite-for-Oracle110R2.exe CLSID: F7014877-6F5A-4019-A3B2-74077F2AE126...

Ultra Crypto Component (CryptoX.dll <= 2.0) SaveToFile() Inscure Method

No description provided by source. pre codespan style=font: 10pt Courier New;span class=general1-symbolbody bgcolor=E0E0E0------------------------------------------------------------------------------------- bUltra Crypto Component CryptoX.dll = 2.0 SaveToFile Inscure Method/b url:...

KingView 6.53 - ActiveX Remote File Creation / Overwrite (KChartXY)

No description provided by source. !-- KingView ActiveX Control KChartXY Remote File Creation / Overwrite Vendor: http://www.wellintech.com Version: KingView 6.53 Tested on: Windows XP SP3 / IE Download: http://www.wellintech.com/documents/KingView6.53EN.zip Author: Blake CLSID:...

CHILKAT ASP String (CkString.dll <= 1.1) SaveToFile() Inscure Method

No description provided by source. pre codespan style=font: 10pt Courier New;span class=general1-symbol----------------------------------------------------------------------------- bCHILKAT ASP String CkString.dll = 1.1 SaveToFile Inscure Method/b url: http://www.chilkatsoft.com/ author: shinnai...

HP Digital Imaging (hpqvwocx.dll 2.1.0.556) - SaveToFile() Exploit

No description provided by source. pre codespan style=font: 10pt Courier New;span class=general1-symbol------------------------------------------------------------------------------- bHP Digital Imaging hpqvwocx.dll v. 2.1.0.556 SaveToFile Insecure Method/b url: http://www.hp.com/ author: shinnai...

KingView 6.53 - ActiveX Remote File Creation / Overwrite (KChartXY)

Exploit for windows platform in category local exploits arg1="..................................\WINDOWS\win.ini" target.SaveToFile arg1 0day.today 2018-03-13...

KingView 6.53 Active-X File Overwrite / Creation

arg1="..................................\WINDOWS\win.ini" target.SaveToFile arg1...

CVE-2012-3022

The SaveToFile method in a certain ActiveX control in TrendDisplay.dll in Canary Labs TrendLink 9.0.2.27051 and earlier does not properly restrict the creation of files, which allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via a crafted w...

Aloaha PDF Crypter (3.5.0.1164) ActiveX Arbitrary File Overwrite

Exploit for windows platform in category dos / poc ============================================================================================ TITLE: ============================================================================================ Aloaha PDF Crypter 3.5.0.1164 activex arbitrary file...

Design/Logic Flaw

The 1 SimpleTree and 2 ReportTree classes in the ARDoc ActiveX control ARDoc.dll in Quest InTrust 10.4.0.853 and earlier do not properly implement the SaveToFile method, which allows remote attackers to write or overwrite arbitrary files via the bstrFileName argument...

IDrive Online Backup ActiveX unsafe method

Unsafe SaveToFile method...

Pro Softnet IDrive Online Backup 3.4.0 - ActiveX &#039;SaveToFile()&#039; Arbitrary File Overwrite

source: https://www.securityfocus.com/bid/48582/info Pro Softnet IDrive Online Backup ActiveX control is prone to a vulnerability that lets attackers overwrite files with arbitrary, attacker-controlled content. An attacker can exploit this issue to corrupt and overwrite arbitrary files on a...

IDrive Online Backup ActiveX control Insecure Method

High-Tech Bridge SA Security Research Lab has discovered vulnerability in IDrive Online Backup ActiveX control, which can be exploited to overwrite arbitrary files. 1 Insecure method in IDrive Online Backup ActiveX Control The vulnerability is caused due to the UniBasicPack.UniTextBox...

MetaProducts MetaTreeX 1.5.100 File Overwrite

Author : Houssamix MetaProducts MetaTreeX V 1.5.100 Remote File Overwrite Exploit Note : SaveToFile is vuln to / Report for Clsid: 67E66985-F81A-11D6-BC0F-F7B40157DC26 RegKey Safe for Script: Faux RegKey Safe for Init: Faux Implements IObjectSafety: Vrai IDisp Safe: Safe for untrusted: caller,dat...