Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Absolute path traversal vulnerability in a certain ActiveX control in officeviewer.ocx 5.1.199.1 in EDraw Office Viewer Component 5.1 allows remote attackers to create or overwrite arbitrary files via a full pathname in the second argument to the HttpDownloadFile method, a different vulnerability than CVE-2007-3168 and CVE-2007-3169.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EDraw Office Viewer 组件 officeviewer.ocx ActiveX控件绝对路径遍历漏洞
Vulnerability Description
EDraw Office Viewer Component 5.1版本的officeviewer.ocx 5.1.199.1中的某个ActiveX控件中存在绝对路径遍历漏洞。远程攻击者可以借助对HttpDownloadFile路径的一个第二自变量的一个完整路径名,新建或重写任意文件。该漏洞不同于CVE-2007-3168和CVE-2007-3169。
CVSS Information
N/A
Vulnerability Type
N/A