cbcvebase.
CVE-2007-5219
published 2007-10-05

CVE-2007-5219: Directory traversal vulnerability in the CLAVSetting.CLSetting.1 ActiveX control in CLAVSetting.DLL 1.00.1829 in the CLAVSetting module in CyberLink PowerDVD…

PriorityP340medium6.4CVSS 2.0
AVNACLAuNCNIPAP
EXPLOIT
EPSS
15.65%
96.4th percentile
Directory traversal vulnerability in the CLAVSetting.CLSetting.1 ActiveX control in CLAVSetting.DLL 1.00.1829 in the CLAVSetting module in CyberLink PowerDVD 7.0 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in the argument to the CreateNewFile method.

Affected

1 ranges
VendorProductVersion rangeFixed in
cyberlinkpowerdvd
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.