Lucene search

K

MitreCVELIST:CVE-2007-1112

HistoryApr 06, 2007 - 12:00 a.m.

CVE-2007-1112

2007-04-0600:00:00

mitre

www.cve.org

2

6.6 Medium

AI Score

Confidence

Low

0.057 Low

EPSS

Percentile

93.4%

Kaspersky Anti-Virus 6.0 and Internet Security 6.0 exposes unsafe methods in the (a) AXKLPROD60Lib.KAV60Info (AxKLProd60.dll) and (b) AXKLSYSINFOLib.SysInfo (AxKLSysInfo.dll) ActiveX controls, which allows remote attackers to “download” or delete arbitrary files via crafted arguments to the (1) DeleteFile, (2) StartBatchUploading, (3) StartStrBatchUploading, or (4) StartUploading methods.

References

secunia.com/advisories/24778

www.kaspersky.com/technews?id=203038694

www.securityfocus.com/archive/1/464882/100/0/threaded

www.securityfocus.com/bid/23345

www.securitytracker.com/id?1017884

www.securitytracker.com/id?1017885

www.vupen.com/english/advisories/2007/1268

www.zerodayinitiative.com/advisories/ZDI-07-014.html

exchange.xforce.ibmcloud.com/vulnerabilities/33464

6.6 Medium

AI Score

Confidence

Low

0.057 Low

EPSS

Percentile

93.4%

Related for CVELIST:CVE-2007-1112

nvd2 cve2 securityvulns2 zdi1 prion2 cvelist1 kaspersky1 nessus1