cbcvebase.
CVE-2007-3168
published 2007-06-11

CVE-2007-3168: A certain ActiveX control in the EDraw Office Viewer Component (edrawofficeviewer.ocx) 4.0.5.20, and other versions before 5.0, allows remote attackers to…

PriorityP342high7.8CVSS 2.0
AVNACMAuNCNIPAC
EXPLOIT
EPSS
6.31%
92.7th percentile
A certain ActiveX control in the EDraw Office Viewer Component (edrawofficeviewer.ocx) 4.0.5.20, and other versions before 5.0, allows remote attackers to delete arbitrary files via the DeleteLocalFile method.

Affected

3 ranges
VendorProductVersion rangeFixed in
edrawoffice_viewer_component<= 5.0
edrawoffice_viewer_component
edrawoffice_viewer_component
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.