Vulnerability Details : CVE-2007-3633
Potential exploit
Absolute path traversal vulnerability in the Chilkat Software Chilkat Zip ActiveX control in ChilkatZip2.dll 12.4.2.0 allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the (1) SaveLastError method and probably the (2) WriteExe method.
Vulnerability category: Directory traversal
Products affected by CVE-2007-3633
- cpe:2.3:a:chilkat_software:chilkat_zip_activex_control:12.4.2.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-3633
7.61%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 91 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-3633
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.4
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:P/A:N |
10.0
|
4.9
|
NIST |
References for CVE-2007-3633
-
http://www.securityfocus.com/bid/24806
Exploit
-
http://secunia.com/advisories/48968
Sign in
-
http://www.vupen.com/english/advisories/2007/2464
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/35294
-
https://www.exploit-db.com/exploits/4160
-
http://secunia.com/advisories/48967
Sign in
-
http://secunia.com/advisories/25962
-
http://osvdb.org/37676
Jump to