CVE-2007-3487

Currently unrated

Key Information:

Vendor
HP
Status
Photo Digital Imaging Activex Control
Vendor
CVE Published:
29 June 2007

Summary

Absolute path traversal in a certain ActiveX control in hpqxml.dll 2.0.0.133 in Hewlett-Packard (HP) Photo Digital Imaging allows remote attackers to create or overwrite arbitrary files via the argument to the saveXMLAsFile method.

References

http://osvdb.org/37675
vdb-entryx_refsource_OSVDB
https://exchange.xforce.ibmcloud.com/vulnerabilities/35124
vdb-entryx_refsource_XF
http://securityreason.com/securityalert/2846
third-party-advisoryx_refsource_SREASON

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.