1 results (0.003 seconds)

CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 1

The SaveMessage method in the LEADeMail.LEADSmtp.20 ActiveX control in LTCML14n.dll 14.0.0.34 in Kofax e-Transactions Sender Sendbox 2.5.0.933 allows remote attackers to write to arbitrary files via a pathname in the first argument. El método SaveMessage en el control LEADeMail.LEADSmtp.20 ActiveX en LTCML14n.dll 14.0.0.34 en Kofax e-Transactions Sender Sendbox 2.5.0.933 permite a atacantes remotos escribir en ficheros arbitrarios a través de un nombre de ruta en el primer argumento. • https://www.htbridge.com/advisory/HTB23016 • CWE-264: Permissions, Privileges, and Access Controls •