CVE

Id
28677  
CVE No.
CVE-2007-5320  
Status
Candidate  
Description
Multiple absolute path traversal vulnerabilities in Pegasus Imaging ImagXpress 8.0 allow remote attackers to (1) delete arbitrary files via the CacheFile attribute in the ThumbnailXpres.1 ActiveX control (PegasusImaging.ActiveX.ThumnailXpress1.dll) or (2) overwrite arbitrary files via the CompactFile function in the ImagXpress.8 ActiveX control (PegasusImaging.ActiveX.ImagXpress8.dll).  
Phase
Assigned (20071009)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
298853 28677 CVE-2007-5320 MISC:http://shinnai.altervista.org/exploits/txt/TXT_3DQ1nIkI6zmWCek4zP5U.html  View
298854 28677 CVE-2007-5320 MISC:http://shinnai.altervista.org/exploits/txt/TXT_wfv7ZG0G6KnQlk1SieLd.html  View
298855 28677 CVE-2007-5320 BID:25948  View
298856 28677 CVE-2007-5320 URL:http://www.securityfocus.com/bid/25948  View
298857 28677 CVE-2007-5320 BID:25949  View
298858 28677 CVE-2007-5320 URL:http://www.securityfocus.com/bid/25949  View
298859 28677 CVE-2007-5320 VUPEN:ADV-2007-3388  View
298860 28677 CVE-2007-5320 URL:http://www.vupen.com/english/advisories/2007/3388  View
298861 28677 CVE-2007-5320 OSVDB:37959  View
298862 28677 CVE-2007-5320 URL:http://osvdb.org/37959  View
298863 28677 CVE-2007-5320 OSVDB:37960  View
298864 28677 CVE-2007-5320 URL:http://osvdb.org/37960  View
298865 28677 CVE-2007-5320 SECUNIA:27095  View
298866 28677 CVE-2007-5320 URL:http://secunia.com/advisories/27095  View
298867 28677 CVE-2007-5320 XF:imagxpress-imagxpress8-file-overwrite(37012)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
55801 JVNDB-2007-004493 Microsoft Visual FoxPro 6 の FPOLE.OCX ActiveX コントロールにおける任意のプログラムを実行される脆弱性 Microsoft Visual FoxPro 6 の FPOLE.OCX ActiveX コントロールは、安全でないメソッドにより、任意のプログラムを実行される脆弱性が存在します。 CVE-2007-5322 28677 7.5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-004493.html  View