Directory traversal vulnerability in a certain ActiveX control in Nessus Vulnerability Scanner 3.0.6 allows remote malicious users to delete arbitrary files via a .. (dot dot) in the argument to the deleteReport method, probably related to the SCANCTRL.ScanCtrlCtrl.1 ActiveX control in scan.dll.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
nessus vulnerability scanner 3.0.6 |