CyberSec.Space Logo
Back to CVE Browser

CVE-2007-2755

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1350%
EPSS Percentile44.32th
PublishedMay 17, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

The PrecisionID Barcode 1.9 ActiveX control in PrecisionID_Barcode.dll, when Internet Explorer 6 is used, allows remote attackers to overwrite arbitrary files via a full pathname to the SaveToFile function, a different vulnerability than CVE-2007-2744.

Affected Platforms (CPE)

πŸ“¦
Precisionid Barcode

Precisionid Barcode

= 1.9

References & Advisories

πŸ”— http://moaxb.blogspot.com/2007/05/moaxb-16-bonus-ie-6-precisionid-barcode.html
πŸ”— http://osvdb.org/37957
πŸ”— http://www.securityfocus.com/bid/24014
πŸ”— http://www.shinnai.altervista.org/viewtopic.php?id=42&t_id=18
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/34337
πŸ”— https://www.exploit-db.com/exploits/3938
πŸ”— http://moaxb.blogspot.com/2007/05/moaxb-16-bonus-ie-6-precisionid-barcode.html
πŸ”— http://osvdb.org/37957

Related Vulnerabilities

CVE-2007-26577.8

Unspecified vulnerability in the PrecisionID Barcode 1.3 ActiveX control in PrecisionID_DataMatrix.DLL allows remote attackers to ...

CVE-2007-27447.5

Stack-based buffer overflow in the PrecisionID Barcode 1.9 ActiveX control in PrecisionID_Barcode.dll allows remote attackers to c...

CVE-2007-350010.0

Xeweb XEForum allows remote attackers to gain privileges via a modified xeforum cookie.

CVE-2007-049610.0

PHP remote file inclusion vulnerability in lib/nl/nl.php in Neon Labs Website (nlws) 3.2 and earlier allows remote attackers to ex...