Vulnerabilities > CVE-2007-2755 - Unspecified vulnerability in Precisionid Barcode Precisionid Barcode 1.9
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
The PrecisionID Barcode 1.9 ActiveX control in PrecisionID_Barcode.dll, when Internet Explorer 6 is used, allows remote attackers to overwrite arbitrary files via a full pathname to the SaveToFile function, a different vulnerability than CVE-2007-2744.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | PrecisionID Barcode ActiveX 1.9 Remote Arbitrary File Overwrite Exploit. CVE-2007-2755. Remote exploit for windows platform |
file | exploits/windows/remote/3938.html |
id | EDB-ID:3938 |
last seen | 2016-01-31 |
modified | 2007-05-16 |
platform | windows |
port | |
published | 2007-05-16 |
reporter | shinnai |
source | https://www.exploit-db.com/download/3938/ |
title | PrecisionID Barcode ActiveX 1.9 - Remote Arbitrary File Overwrite Exploit |
type | remote |
References
- http://moaxb.blogspot.com/2007/05/moaxb-16-bonus-ie-6-precisionid-barcode.html
- http://osvdb.org/37957
- http://www.securityfocus.com/bid/24014
- http://www.shinnai.altervista.org/viewtopic.php?id=42&t_id=18
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34337
- https://www.exploit-db.com/exploits/3938