CVE-2007-3487
published 2007-06-29CVE-2007-3487: Absolute path traversal in a certain ActiveX control in hpqxml.dll 2.0.0.133 in Hewlett-Packard (HP) Photo Digital Imaging allows remote attackers to create or…
PriorityP334medium6.4CVSS 2.0
AVNACLAuNCPIPAN
EXPLOIT
EPSS
8.77%
94.5th percentile
Absolute path traversal in a certain ActiveX control in hpqxml.dll 2.0.0.133 in Hewlett-Packard (HP) Photo Digital Imaging allows remote attackers to create or overwrite arbitrary files via the argument to the saveXMLAsFile method.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hp | photo_digital_imaging_activex_control | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://osvdb.org/37675http://secunia.com/advisories/25869http://securityreason.com/securityalert/2846http://www.securityfocus.com/archive/1/472384/100/0/threadedhttps://exchange.xforce.ibmcloud.com/vulnerabilities/35124https://www.exploit-db.com/exploits/4119http://osvdb.org/37675http://secunia.com/advisories/25869http://securityreason.com/securityalert/2846http://www.securityfocus.com/archive/1/472384/100/0/threadedhttps://exchange.xforce.ibmcloud.com/vulnerabilities/35124https://www.exploit-db.com/exploits/4119
2007-06-29
Published