CVSS: 7.5EPSS: 43%CPEs: 4EXPL: 1CVE-2007-3493 – NCTAudioStudio2 - ActiveX DLL 2.6.1.148 'CreateFile()'/ Insecure Method
https://notcve.org/view.php?id=CVE-2007-3493
29 Jun 2007 — A certain ActiveX control in NCTWavChunksEditor2.dll 2.6.1.148 in NCTAudioStudio (NCTAudioStudio2) 2.7, as used by Sienzo DMM and probably other products, allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the CreateFile method, a different product than CVE-2007-3400. Cierto control ActiveX en NCTWavChunksEditor2.dll 2.6.1.148 de NCTAudioStudio (NCTAudioStudio2) 2.7, como el utilizado por Sienzo DMM y probablemente otros productos, permite a atacantes remot... • https://www.exploit-db.com/exploits/4109 •
CVSS: 9.3EPSS: 6%CPEs: 2EXPL: 2CVE-2007-3400 – NCTAudioEditor2 ActiveX DLL 'NCTWMAFile2.dll 2.6.2.157' - File Write
https://notcve.org/view.php?id=CVE-2007-3400
26 Jun 2007 — The NCTAudioEditor2 ActiveX control in NCTWMAFile2.dll 2.6.2.157, as distributed in NCTAudioEditor and NCTAudioStudio 2.7, allows remote attackers to overwrite arbitrary files via the CreateFile method. El control ActiveX NCTAudioEditor2 en la biblioteca NCTWMAFile2.dll versión 2.6.2.157, distribuido en NCTAudioEditor y NCTAudioStudio versión 2.7, permite a atacantes remotos sobrescribir archivos arbitrarios por medio del método CreateFile. • https://www.exploit-db.com/exploits/4101 • CWE-20: Improper Input Validation •