Vulnerabilities > CVE-2007-3982 - Unspecified vulnerability in Datadynamics Activereports 2.0/2.5

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

datadynamics

exploit available

NVD

Published: 2007-07-25

Updated: 2024-11-21

Summary

Absolute path traversal vulnerability in the Data Dynamics ActiveReport (ActiveReports) ActiveX control in actrpt2.dll 2.5 and earlier allows remote attackers to create or overwrite arbitrary files via a full pathname in the first argument to the SaveLayout method.

Vulnerable Configurations

Part	Description	Count
Application	Datadynamics Datadynamics Activereports - Datadynamics Activereports 2.0 Datadynamics Activereports 2.5	3

Exploit-Db

description	Data Dynamics ActiveReport ActiveX (actrpt2.dll <= 2.5) Inscure Method. CVE-2007-3982,CVE-2007-3983. Remote exploit for windows platform
file	exploits/windows/remote/4208.html
id	EDB-ID:4208
last seen	2016-01-31
modified	2007-07-21
platform	windows
port
published	2007-07-21
reporter	shinnai
source	https://www.exploit-db.com/download/4208/
title	Data Dynamics ActiveReport ActiveX actrpt2.dll <= 2.5 Inscure Method
type	remote

Summary

Vulnerable Configurations

Exploit-Db

References