CVE-2007-5446 in PBEmailinfo

Summary

Absolute path traversal vulnerability in a certain ActiveX control in PBEmail7Ax.dll in PBEmail 7 ActiveX Edition allows remote attackers to create or overwrite arbitrary files via a full pathname in the XmlFilePath argument to the SaveSenderToXml method.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

10/14/2007

Disclosure

10/14/2007

Moderation

VulDB entry created

Entries

1: VDB-39256

CPE

ready

CWE

CWE-22 (Confirmed)

Exploit

Download

CVSS

6.5

EPSS

0.02006

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-5446
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-5446
CVE Details	https://www.cvedetails.com/cve/CVE-2007-5446/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!