Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A certain ActiveX control in the EDraw Office Viewer Component (edrawofficeviewer.ocx) 4.0.5.20, and other versions before 5.0, allows remote attackers to delete arbitrary files via the DeleteLocalFile method.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EDraw Office Viewer Component ActiveX任意文件删除漏洞
Vulnerability Description
Office Viewer Component是用于显示和交互Microsoft Office文件的ActiveX控件。 Office Viewer Component的ActiveX控件实现上存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞非授权删除用户文件。 EDraw Office Viewer Component(edrawofficeviewer.ocx)ActiveX控件没有安全地使用DeleteLocalFile()方式。如果用户受骗访问了恶意站点的话,就可能导致删除指定的文件。
CVSS Information
N/A
Vulnerability Type
N/A