EDImage.ocx 2.0.2005.1104的EDraw Flowchart ActiveX控件中存在绝对目录遍历漏洞,这将允许远程攻击者通过在HttpDownloadFile方法的第二个参数中设置完整的路径名从而以任意内容创建或覆写任意文件。 该漏洞由shinnai发现。
These articles are brought to you in association with Pocket-lint and our partners. All the best presentations and documents have exciting and interesting visual information to go with them - it's a ...
一些您可能无法访问的结果已被隐去。
显示无法访问的结果
反馈