CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2007-2755

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1350%
EPSS Percentile44.32th
Published2007年5月17日
Last Modified2026年4月23日

Vulnerability Description

The PrecisionID Barcode 1.9 ActiveX control in PrecisionID_Barcode.dll, when Internet Explorer 6 is used, allows remote attackers to overwrite arbitrary files via a full pathname to the SaveToFile function, a different vulnerability than CVE-2007-2744.

Affected Platforms (CPE)

📦
Precisionid Barcode

Precisionid Barcode

= 1.9

References & Advisories

🔗 http://moaxb.blogspot.com/2007/05/moaxb-16-bonus-ie-6-precisionid-barcode.html
🔗 http://osvdb.org/37957
🔗 http://www.securityfocus.com/bid/24014
🔗 http://www.shinnai.altervista.org/viewtopic.php?id=42&t_id=18
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/34337
🔗 https://www.exploit-db.com/exploits/3938
🔗 http://moaxb.blogspot.com/2007/05/moaxb-16-bonus-ie-6-precisionid-barcode.html
🔗 http://osvdb.org/37957

相關漏洞威脅

CVE-2007-26577.8

Unspecified vulnerability in the PrecisionID Barcode 1.3 ActiveX control in PrecisionID_DataMatrix.DLL allows remote attackers to ...

CVE-2007-27447.5

Stack-based buffer overflow in the PrecisionID Barcode 1.9 ActiveX control in PrecisionID_Barcode.dll allows remote attackers to c...

CVE-2007-321610.0

Multiple buffer overflows in the LGServer component of CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktop...

CVE-2007-323210.0

The IBM TotalStorage DS400 with firmware 4.15 uses a blank password for the (1) root, (2) user, (3) manager, (4) administrator, an...