CVE-2007-4031 in Vulnerability Scannerinfo

Summary

Directory traversal vulnerability in a certain ActiveX control in Nessus Vulnerability Scanner 3.0.6 allows remote attackers to delete arbitrary files via a .. (dot dot) in the argument to the deleteReport method, probably related to the SCANCTRL.ScanCtrlCtrl.1 ActiveX control in scan.dll.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

07/27/2007

Disclosure

07/27/2007

Moderation

VulDB entry created

Entries

VDB-38039 (1)

CPE

ready

CWE

CWE-22 (Confirmed)

Exploit

Download

CVSS

8.2

EPSS

0.07796

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-4031
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-4031
CVE Details	https://www.cvedetails.com/cve/CVE-2007-4031/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!