CVE-2007-5320
CVE-2007-5320
Multiple absolute path traversal vulnerabilities in Pegasus Imaging ImagXpress 8.0 allow remote attackers to (1) delete arbitrary files via the CacheFile attribute in the ThumbnailXpres.1 ActiveX control (PegasusImaging.ActiveX.ThumnailXpress1.dll) or (2) overwrite arbitrary files via the CompactFile function in the ImagXpress.8 ActiveX control (PegasusImaging.ActiveX.ImagXpress8.dll).
Produtos afetados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/4488não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://osvdb.org/37959http://osvdb.org/37960http://secunia.com/advisories/27095https://exchange.xforce.ibmcloud.com/vulnerabilities/37012http://shinnai.altervista.org/exploits/txt/TXT_3DQ1nIkI6zmWCek4zP5U.htmlhttp://shinnai.altervista.org/exploits/txt/TXT_wfv7ZG0G6KnQlk1SieLd.htmlhttp://www.securityfocus.com/bid/25948http://www.securityfocus.com/bid/25949http://www.vupen.com/english/advisories/2007/3388