Multiple absolute path traversal vulnerabilities in Pegasus Imaging ImagXpress 8.0 allow remote attackers to (1) delete arbitrary files via the CacheFile attribute in the ThumbnailXpres.1 ActiveX control (PegasusImaging.ActiveX.ThumnailXpress1.dll) or (2) overwrite arbitrary files via the CompactFile function in the ImagXpress.8 ActiveX control (PegasusImaging.ActiveX.ImagXpress8.dll).
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-10-09T22:00:00
Updated: 2024-08-07T15:24:42.476Z
Reserved: 2007-10-09T00:00:00
Link: CVE-2007-5320
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-10-09T22:17:00.000
Modified: 2017-07-29T01:33:35.850
Link: CVE-2007-5320
Redhat
No data.