Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2007-4982

EPSS 9.69% · P93
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-4982

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple absolute path traversal vulnerabilities in the MW6QRCode.QRCode.1 ActiveX control in MW6QRCode.dll in MW6 Technologies QRCode ActiveX 3.0.0.1 and earlier allow remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the (1) SaveAsBMP or (2) SaveAsWMF method. NOTE: some of these details are obtained from third party information.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
MW6 Technologies QRCode ActiveX控件任意文件破坏漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
MW6 Technologies QRCode是一种程序组件库。 QRCode所带的ActiveX控件实现上存在漏洞,远程攻击者可能利用此漏洞破坏系统上的任意文件。 MW6QRCode.QRCode.1 ActiveX控件(MW6QRCode.dll)的SaveAsBMP()和SaveAsWMF()方式可以把图像文件保存到参数指定的地方,这个功能可被用来覆盖当前用户权限下可访问的任意文件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2007-4982

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2007-4982

登录查看更多情报信息。

Same Patch Batch · n/a · 2007-09-19 · 19 CVEs total

CVE-2007-4980GCALDaemon GCALDaemon GCALDaemon 数字错误漏洞
CVE-2007-4972Sysinternals Sysinternals Regmon 权限许可和访问控制漏洞
CVE-2007-4971ISecSoft ISecSoft ProSecurity 输入验证漏洞
CVE-2007-4970DiamondCS DiamondCS ProcessGuard 输入验证漏洞
CVE-2007-4969Sysinternals Sysinternals Process Monitor 输入验证漏洞
CVE-2007-4968Privacyware Privacyware Privatefirewall 输入验证漏洞
CVE-2007-4967Online Online Armor Personal Firewall 权限许可和访问控制漏洞
CVE-2007-4974libsndfile flac_buffer_copy()函数远程堆溢出漏洞
CVE-2007-4981Oblius Oblius Obedit 跨站脚本攻击漏洞
CVE-2007-4983COWON America jetAudio JetFlExt.dll ActiveX控件远程命令执行漏洞
CVE-2007-4979KwsPHP KwsPHP Kwsphp SQL注入漏洞
CVE-2007-4978PhpSyncML PhpSyncML PhpSyncML 代码注入漏洞
CVE-2007-4977Coppermine Photo Gallery 多个输入验证漏洞
CVE-2007-4976Coppermine Photo Gallery 多个输入验证漏洞
CVE-2007-4975b1gMail hilfe.php 跨站脚本攻击漏洞
CVE-2007-4827Automated Solutions Modbus TCP Slave ActiveX控件远程堆溢出漏洞
CVE-2007-3286Avaya IP Softphone ActiveX控件s 多个缓冲区溢出漏洞
CVE-2007-4984ktauber.com Styles Demo MOD for phpBB 多个输入验证漏洞

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2007-4982

No comments yet

Leave a comment