Back to search
CVE-2007-5826
Published: Nov 5, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Absolute path traversal vulnerability in the EDraw Flowchart ActiveX control in EDImage.ocx 2.0.2005.1104 allows remote attackers to create or overwrite arbitrary files with arbitrary contents via a full pathname in the second argument to the HttpDownloadFile method, a different product than CVE-2007-4420.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
27462
third-party-advisory
x_refsource_SECUNIA
ADV-2007-3710
vdb-entry
x_refsource_VUPEN
4598
exploit
x_refsource_EXPLOIT-DB
edraw-flowchart-edimage-file-overwrite(38223)
vdb-entry
x_refsource_XF
38415
vdb-entry
x_refsource_OSVDB
26308
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now