CVE-2008-6496 – Visagesoft eXPert PDF EditorX - 'VSPDFEditorX.ocx' Insecure Method
https://notcve.org/view.php?id=CVE-2008-6496
Insecure method vulnerability in the VSPDFEditorX.VSPDFEdit ActiveX control in VSPDFEditorX.ocx 1.0.200.0 in VISAGESOFT eXPert PDF EditorX allows remote attackers to create or overwrite arbitrary files via the first argument to the extractPagesToFile method. Vulnerabilidad de método inseguro en el control ActiveX VSPDFEditorX.VSPDFEdit en VSPDFEditorX.ocx v1.0.200.0 en VISAGESOFT eXPert PDF EditorX permite a atacantes remotos crear o sobre escribir ficheros de su elección a través de un primer argumento del método extractPagesToFile. • https://www.exploit-db.com/exploits/7358 http://secunia.com/advisories/32990 http://www.securityfocus.com/bid/32664 https://exchange.xforce.ibmcloud.com/vulnerabilities/47166 • CWE-264: Permissions, Privileges, and Access Controls •