← back
CVE-2007-3487

CVE-2007-3487

EPSS 8.8%
Absolute path traversal in a certain ActiveX control in hpqxml.dll 2.0.0.133 in Hewlett-Packard (HP) Photo Digital Imaging allows remote attackers to create or overwrite arbitrary files via the argument to the saveXMLAsFile method.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/4119unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/37675http://secunia.com/advisories/25869http://securityreason.com/securityalert/2846https://exchange.xforce.ibmcloud.com/vulnerabilities/35124https://www.exploit-db.com/exploits/4119http://www.securityfocus.com/archive/1/472384/100/0/threaded