RSS   Podatności dla 'Ultra crypto component'   RSS

2007-09-17
 
CVE-2007-4903

 

 
Multiple buffer overflows in a certain ActiveX control in CryptoX.dll 2.0 and earlier in the Ultra Crypto Component allow remote attackers to execute arbitrary code via (1) a long string in the first argument to the AcquireContext method or (2) an unspecified vector to the DeleteContext method.

 
 
CVE-2007-4902

 

 
Absolute path traversal vulnerability in a certain ActiveX control in CryptoX.dll 2.0 and earlier in the Ultra Crypto Component allows remote attackers to write to arbitrary files via a full pathname in the argument to the SaveToFile method.

 


Copyright 2024, cxsecurity.com

 

Back to Top