CVE-2008-1933

Absolute path traversal vulnerability in a certain ActiveX control in Zune allows user-assisted remote attackers to overwrite arbitrary files via the SaveToFile method. NOTE: the victim must explicitly allow the code to run...

HP Software Updates ActiveX unauthorized access

Unsafe SaveToFile method allows access to filesystem...

Path traversal

Absolute path traversal vulnerability in the EbCrypt.ebcPRNGenerator.1 ActiveX control in EBCRYPT.DLL 2.0.0.2087 and earlier in EB Design ebCrypt allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the SaveToFile method. NOTE: some of these detail...

EB Design Pty Ltd (EBCRYPT.DLL v.2.0) Multiple Remote Vulnerabilites

No description provided by source. pre codespan style="font: 10pt Courier New;"span class="general1-symbol"body bgcolor="E0E0E0"----------------------------------------------------------------------------- bEB Design Pty Ltd EBCRYPT.DLL v.2.0 Multiple Remote Vulnerabilites/b url:...

Ultra Crypto Component (CryptoX.dll <= 2.0) SaveToFile() Inscure Method

No description provided by source. pre codespan style="font: 10pt Courier New;"span class="general1-symbol"body bgcolor="E0E0E0"------------------------------------------------------------------------------------- bUltra Crypto Component CryptoX.dll = 2.0 "SaveToFile" Inscure Method/b...

ultra-cryptox20.txt

------------------------------------------------------------------------------------- Ultra Crypto Component CryptoX.dll url: http://www.ultrashareware.com/ author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was written for educational purpose. Use it at your...

Ultra Crypto Component - CryptoX.dll 2.0 SaveToFile() Insecure Method

Ultra Crypto Component - CryptoX.dll 2.0 SaveToFile Insecure Method ------------------------------------------------------------------------------------- Ultra Crypto Component CryptoX.dll url: http://www.ultrashareware.com/ author: shinnai mail: shinnaiatautisticidotorg site:...

Ultra Crypto Component - 'CryptoX.dll 2.0 SaveToFile()' Insecure Method

------------------------------------------------------------------------------------- Ultra Crypto Component CryptoX.dll url: http://www.ultrashareware.com/ author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was written for educational purpose. Use it at your...

Ultra Crypto Component (CryptoX.dll <= 2.0) SaveToFile() Inscure Method

Exploit for unknown platform in category remote exploits ======================================================================= Ultra Crypto Component CryptoX.dll ------------------------------------------------------------------------------------- Ultra Crypto Component CryptoX.dll url:...

CVE-2007-4252

Absolute path traversal vulnerability in a certain ActiveX control in CkString.dll 1.1 and earlier in CHILKAT ASP String allows remote attackers to create or overwrite arbitrary files via a full pathname in the first argument to the SaveToFile method, a different vulnerability than CVE-2007-3633...

CVE-2007-4252

Absolute path traversal vulnerability in a certain ActiveX control in CkString.dll 1.1 and earlier in CHILKAT ASP String allows remote attackers to create or overwrite arbitrary files via a full pathname in the first argument to the SaveToFile method, a different vulnerability than CVE-2007-3633...

chilkat-insecure.txt

----------------------------------------------------------------------------- CHILKAT ASP String CkString.dll url: http://www.chilkatsoft.com/ author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was written for educational purpose. Use it at your own risk. Auth...

CHILKAT ASP String (CkString.dll &lt;= 1.1) SaveToFile() Inscure Method

No description provided by source. pre codespan style="font: 10pt Courier New;"span class="general1-symbol"----------------------------------------------------------------------------- bCHILKAT ASP String CkString.dll = 1.1 "SaveToFile" Inscure Method/b url: http://www.chilkatsoft.com/ author:...

CHILKAT ASP String - &#039;CkString.dll 1.1 SaveToFile()&#039; Insecure Method

----------------------------------------------------------------------------- CHILKAT ASP String CkString.dll url: http://www.chilkatsoft.com/ author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was written for educational purpose. Use it at your own risk. Auth...

CHILKAT ASP String - CkString.dll 1.1 SaveToFile() Insecure Method

CHILKAT ASP String - CkString.dll 1.1 SaveToFile Insecure Method ----------------------------------------------------------------------------- CHILKAT ASP String CkString.dll url: http://www.chilkatsoft.com/ author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This w...

Path traversal

Absolute path traversal vulnerability in a certain ActiveX control in PGPBBox.dll in EldoS SecureBlackbox sbb 5.1.0.112 allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the SaveToFile method. NOTE: the provenance of this information is unknown;...

CVE-2007-3785

CVE-2007-3785: Absolute path traversal in EldoS SecureBlackbox (sbb) 5.1.0.112 via PGPBBox.dll ActiveX SaveToFile allows a full path to create/overwrite files. The description is consistent across NVD and related records. Connected documents do not provide additional technical details (no expande...

SecureBlackbox (PGPBBox.dll 5.1.0.112) Arbitary Data Write Exploit

Exploit for unknown platform in category remote exploits ================================================================== SecureBlackbox PGPBBox.dll 5.1.0.112 Arbitary Data Write Exploit ================================================================== :. GOODFELLAS Security Research TEAM .: :...

Design/Logic Flaw

Multiple unspecified vulnerabilities in the Innovasys DockStudioXP InnovaDSXP2.OCX ActiveX Control have unspecified attack vectors and impact, including a denial of service via "improper use" of the SaveToFile function...

CVE-2007-3669

Multiple unspecified vulnerabilities in the Innovasys DockStudioXP InnovaDSXP2.OCX ActiveX Control have unspecified attack vectors and impact, including a denial of service via "improper use" of the SaveToFile function...