Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 17/09/2007 Updated: 29/09/2017

CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10

VMScore: 645

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:P

Absolute path traversal vulnerability in a certain ActiveX control in CryptoX.dll 2.0 and previous versions in the Ultra Crypto Component allows remote malicious users to write to arbitrary files via a full pathname in the argument to the SaveToFile method.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ultra shareware ultra crypto component 2.0.2007.801

<pre> <code><span style="font: 10pt Courier New;"><span class="general1-symbol"><body bgcolor="#E0E0E0">------------------------------------------------------------------------------------- <b>Ultra Crypto Component (CryptoXdll <= 20) "SaveToFile()" Inscure Method</b> url: wwwultrasharewarec ...

CWE-22 http://www.securityfocus.com/bid/25611 http://www.securitytracker.com/id?1018675 http://osvdb.org/38982 https://exchange.xforce.ibmcloud.com/vulnerabilities/36522 https://www.exploit-db.com/exploits/4388 https://nvd.nist.gov https://www.exploit-db.com/exploits/4388/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-4902

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect