← volver
CVE-2007-3493

CVE-2007-3493

EPSS 31.3%
A certain ActiveX control in NCTWavChunksEditor2.dll 2.6.1.148 in NCTAudioStudio (NCTAudioStudio2) 2.7, as used by Sienzo DMM and probably other products, allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the CreateFile method, a different product than CVE-2007-3400.
Productos afectados
n/a · n/a
PoCs públicas encontradas1
cve_referencewww.exploit-db.com/exploits/4109no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://osvdb.org/37673http://secunia.com/advisories/25851https://exchange.xforce.ibmcloud.com/vulnerabilities/35081https://www.exploit-db.com/exploits/4109http://www.securityfocus.com/bid/24656http://www.shinnai.altervista.org/exploits/ntcwavchunkstxt.htmlhttp://www.shinnai.altervista.org/index.php?mod=02_Forum&group=Exploits&argument=Remote&topic=1182845325.ff.php&page=lasthttp://www.vupen.com/english/advisories/2007/2351