CVE-2007-3296 Information

Description

The ThunderServer.webThunder.1 ActiveX control in xunlei Web Thunderbolt 1.7.3.109 allows remote attackers to download arbitrary files and conduct other unauthorized actions by invoking dangerous methods.

Reference

http://osvdb.org/38474 http://www.securityfocus.com/bid/24552 http://www.whsafe.com/Article/ldgg/200706/12375.shtml