CVE-2007-3487

Published: Jun 29, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Absolute path traversal in a certain ActiveX control in hpqxml.dll 2.0.0.133 in Hewlett-Packard (HP) Photo Digital Imaging allows remote attackers to create or overwrite arbitrary files via the argument to the saveXMLAsFile method.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

37675

vdb-entry

x_refsource_OSVDB

hp-photodigitalimaging-hpqxml-file-overwrite(35124)

vdb-entry

x_refsource_XF

2846

third-party-advisory

x_refsource_SREASON

20070627 [GOODFELLAS - VULN] hpqxml.dll 2.0.0.133 from HP Digital ImagingArbitary Data Write.

mailing-list

x_refsource_BUGTRAQ

25869

third-party-advisory

x_refsource_SECUNIA

4119

exploit

x_refsource_EXPLOIT-DB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2007-3487

Description

Affected Products

References