CVE-2007-4982

CVE-2007-4982 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Multiple absolute path traversal vulnerabilities in the MW6QRCode.QRCode.1 ActiveX control in MW6QRCode.dll in MW6 Technologies QRCode ActiveX 3.0.0.1 and earlier allow remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the (1) SaveAsBMP or (2) SaveAsWMF method. NOTE: some of these details are obtained from third party information.

Learn more about our Web Application Penetration Testing UK.