CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 2CVE-2007-4062 – Nessus Vulnerability Scanner 3.0.6 - ActiveX Command Execution
https://notcve.org/view.php?id=CVE-2007-4062
The SCANCTRL.ScanCtrlCtrl.1 ActiveX control in scan.dll in Nessus Vulnerability Scanner 3.0.6 allows remote attackers to delete arbitrary files via unspecified vectors involving the deleteNessusRC method, probably a directory traversal vulnerability. El control ActiveX SCANCTRL.ScanCtrlCtrl.1 en scan.dll de Nessus Vulnerability Scanner 3.0.6 permite a atacantes remotos borrar archivos de su elección a través de vectores no especificados involucrando el método delteNessusRC, probablemente una vulnerabilidad de salto de directorio. • https://www.exploit-db.com/exploits/4237 http://secunia.com/advisories/26243 http://www.nessus.org/news http://www.securityfocus.com/bid/25088 https://exchange.xforce.ibmcloud.com/vulnerabilities/35641 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.3EPSS: 8%CPEs: 1EXPL: 1CVE-2007-4061 – Nessus Vulnerability Scanner 3.0.6 - ActiveX Command Execution
https://notcve.org/view.php?id=CVE-2007-4061
Directory traversal vulnerability in a certain ActiveX control in Nessus Vulnerability Scanner 3.0.6 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in the argument to the saveNessusRC method, which writes text specified by the addsetConfig method, possibly related to the SCANCTRL.ScanCtrlCtrl.1 ActiveX control in scan.dll. NOTE: this can be leveraged for code execution by writing to a Startup folder. Vulnerabilidad de salto de directorio en un cierto control ActiveX en Nessus Vulnerability Scanner 3.0.6 permite a atacanes remotos crear o sobrescribir archivos de su elección a través de la secuencia ..(punto punto) en el argumento en el método saveNessusRC, el cual escribe el texto especificado a través del método addsetConfig, posiblemente relacionado con el control ActiveX SCANCTRL.ScanCtrlCtrl.1 en scan.dll. • https://www.exploit-db.com/exploits/4237 http://secunia.com/advisories/26243 http://www.nessus.org/news http://www.securityfocus.com/bid/25088 http://www.vupen.com/english/advisories/2007/2702 https://exchange.xforce.ibmcloud.com/vulnerabilities/35641 •
CVSS: 7.8EPSS: 6%CPEs: 1EXPL: 2CVE-2007-4031 – Nessus Vulnerability Scanner 3.0.6 - ActiveX Command Execution
https://notcve.org/view.php?id=CVE-2007-4031
Directory traversal vulnerability in a certain ActiveX control in Nessus Vulnerability Scanner 3.0.6 allows remote attackers to delete arbitrary files via a .. (dot dot) in the argument to the deleteReport method, probably related to the SCANCTRL.ScanCtrlCtrl.1 ActiveX control in scan.dll. Una vulnerabilidad de salto de directorio en un determinado control ActiveX en Nessus Vulnerability Scanner versión 3.0.6, permite a atacantes remotos eliminar archivos arbitrarios por medio de un .. (punto punto) en el argumento para el método deleteReport, probablemente relacionado con el Control ActiveX SCANCTRL.ScanCtrlCtrl.1 en la biblioteca scan.dll. • https://www.exploit-db.com/exploits/4237 https://www.exploit-db.com/exploits/4230 http://secunia.com/advisories/26243 http://securitytracker.com/id?1018469 http://www.nessus.org/news http://www.securityfocus.com/bid/25088 http://www.vupen.com/english/advisories/2007/2680 https://exchange.xforce.ibmcloud.com/vulnerabilities/35641 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •