Lucene search
MitreCVE-2007-4252HistoryAug 08, 2007 - 11:17 p.m.
CVE-2007-4252
2007-08-0823:17:00
mitre
web.nvd.nist.gov
28
cve-2007-4252
activex control
path traversal
remote code execution
security vulnerability
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.8
Confidence
Low
EPSS
0.014
Percentile
86.5%
Absolute path traversal vulnerability in a certain ActiveX control in CkString.dll 1.1 and earlier in CHILKAT ASP String allows remote attackers to create or overwrite arbitrary files via a full pathname in the first argument to the SaveToFile method, a different vulnerability than CVE-2007-3633.
Affected configurations
Node
chilkat_softwareasp_stringMatch1.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| chilkat_software | asp_string | 1.1 | cpe:2.3:a:chilkat_software:asp_string:1.1:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2007-4252
2007-08-08 23:17:00
CVE-2007-3633
2007-07-10 00:30:00
prion
prion
Path traversal
2007-08-08 23:17:00
Path traversal
2007-07-10 00:30:00
cvelist
cvelist
CVE-2007-4252
2007-08-08 23:00:00
CVE-2007-3633
2007-07-10 00:00:00
exploitdb
exploitdb
Chilkat Zip ActiveX Component 12.4 - Multiple Insecure Methods
2007-07-07 00:00:00
cve
cve
CVE-2007-3633
2007-07-10 00:30:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.8
Confidence
Low
EPSS
0.014
Percentile
86.5%
Related for CVE-2007-4252