RSS   Vulnerabilities for 'Imagxpress'   RSS

2007-10-09
 
CVE-2007-5320

CWE-22
 

 
Multiple absolute path traversal vulnerabilities in Pegasus Imaging ImagXpress 8.0 allow remote attackers to (1) delete arbitrary files via the CacheFile attribute in the ThumbnailXpres.1 ActiveX control (PegasusImaging.ActiveX.ThumnailXpress1.dll) or (2) overwrite arbitrary files via the CompactFile function in the ImagXpress.8 ActiveX control (PegasusImaging.ActiveX.ImagXpress8.dll).

 


Copyright 2024, cxsecurity.com

 

Back to Top