Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
NuMedia Soft NMS DVD Burning SDK Activex NMSDVDX.DVDEngineX.1 ActiveX control (NMSDVDX.dll) 1.013C and earlier, as used in CDBurnerXP 4.2.1.976, BurnAware 2.1.3, Blaze Media Pro 8.02 Special Edition, and possibly other products, allows remote attackers to overwrite and create arbitrary files via calls to the EnableLog and LogMessage methods. NOTE: this issue might only be exploitable in limited environments or non-default browser settings. NOTE: some of these details are obtained from third party information. NOTE: this can be leveraged for remote code execution by accessing files using hcp:// URLs.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
NuMedia Soft NMS DVD Burning ActiveX控件覆盖和创建任意文件漏洞
Vulnerability Description
NuMedia Soft NMS DVD Burning SDK Activex NMSDVDX.DVDEngineX.1 ActiveX 控件 (NMSDVDX.dll) 1.013C 及其早期版本, 当在CDBurnerXP 4.2.1.976中运行时, BurnAware 2.1.3, Blaze Media Pro 8.02 Special Edition, 以及其他可能产品, 远程攻击者可以通过对EnableLog和LogMessage方法提交的请求来写满和创建任意文件。
CVSS Information
N/A
Vulnerability Type
N/A