Vulnerabilities > CVE-2007-3459 - Unspecified vulnerability in Civiltech Avax Vector Activex 1.3

047910
CVSS 6.4 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
civiltech
exploit available

Summary

A certain ActiveX control in Avaxswf.dll 1.0.0.1 in Civitech Avax Vector 1.3 allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the WriteMovie method.

Vulnerable Configurations

Part Description Count
Application
Civiltech
1

Exploit-Db

descriptionAvaxswf.dll v.1.0.0.1 from Avax Vector ActiveX Arbitrary Data Write. CVE-2007-3459. Remote exploit for windows platform
fileexploits/windows/remote/4110.html
idEDB-ID:4110
last seen2016-01-31
modified2007-06-26
platformwindows
port
published2007-06-26
reportercallAX
sourcehttps://www.exploit-db.com/download/4110/
titleAvaxswf.dll 1.0.0.1 from Avax Vector - ActiveX Arbitrary Data Write
typeremote