3 matches found
CVE-2007-4031
CVE-2007-4031 affects Nessus Vulnerability Scanner for Windows prior to 3.0.6.1, in the ScanCtrl ActiveX control (SCANCTRL.ScanCtrlCtrl.1 in scan.dll). The flaw allows directory traversal: an attacker who lures a user to a crafted page can cause deleteReport to send a .. path, enabling deletion o...
CVE-2007-4061
CVE-2007-4061 : Directory traversal via .. in the Nessus ScanCtrl ActiveX (SCANCTRL.ScanCtrlCtrl.1 in scan.dll) allows remote creation/overwrite of arbitrary files through saveNessusRC, potentially enabling code execution by writing to a Startup folder. Affected product: Nessus Vulnerability Scan...
CVE-2007-4062
CVE-2007-4062 affects Nessus Vulnerability Scanner 3.0.6 via the SCANCTRL.ScanCtrlCtrl.1 ActiveX (scan.dll). The vulnerability arises in the deleteNessusRC method, likely a directory traversal, allowing remote attackers to delete arbitrary files. Related Nessus NASL indicates Nessus for Windows v...