Lucene search

K
EdrawOffice Viewer Component

5 matches found

CVE
CVE
added 2007/06/11 10:30 p.m.54 views

CVE-2007-3169

Buffer overflow in a certain ActiveX control in the EDraw Office Viewer Component (edrawofficeviewer.ocx) 4.0.5.20, and other versions before 5.0, allows remote attackers to cause a denial of service (Internet Explorer 7 crash) or execute arbitrary code via a long first argument to the HttpDownload...

9.3CVSS7.7AI score0.3135EPSS
CVE
CVE
added 2007/09/11 7:17 p.m.38 views

CVE-2007-4821

Buffer overflow in a certain ActiveX control in officeviewer.ocx 5.2.218.1 in EDraw Office Viewer Component 5.2 allows remote attackers to execute arbitrary code via a long first argument to the HttpDownloadFileToTempDir method, a different vulnerability than CVE-2007-3169.

9.3CVSS7.6AI score0.3135EPSS
CVE
CVE
added 2007/06/11 10:30 p.m.36 views

CVE-2007-3168

A certain ActiveX control in the EDraw Office Viewer Component (edrawofficeviewer.ocx) 4.0.5.20, and other versions before 5.0, allows remote attackers to delete arbitrary files via the DeleteLocalFile method.

7.8CVSS6.7AI score0.12028EPSS
CVE
CVE
added 2007/10/06 5:17 p.m.34 views

CVE-2007-5257

Stack-based buffer overflow in the EDraw.OfficeViewer ActiveX control in officeviewer.ocx in EDraw Office Viewer Component 5.3.220.1 and earlier allows remote attackers to execute arbitrary code via long strings in the first and second arguments to the FtpDownloadFile method, a different vector tha...

10CVSS7.8AI score0.3135EPSS
CVE
CVE
added 2007/08/18 9:17 p.m.32 views

CVE-2007-4420

Absolute path traversal vulnerability in a certain ActiveX control in officeviewer.ocx 5.1.199.1 in EDraw Office Viewer Component 5.1 allows remote attackers to create or overwrite arbitrary files via a full pathname in the second argument to the HttpDownloadFile method, a different vulnerability t...

9.3CVSS6.5AI score0.3135EPSS