Vulnerabilities > Orbitdownloader > Orbit Downloader > 2.7.6
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-03-26 | CVE-2009-1064 | Code Injection vulnerability in multiple products Argument injection vulnerability in orbitmxt.dll 2.1.0.2 in the Orbit Downloader 2.8.7 and earlier ActiveX control allows remote attackers to overwrite arbitrary files via whitespace and a command-line switch, followed by a full pathname, in the third argument to the download method. | 5.8 |