CVE-2007-5110 Information

Description

Absolute path traversal vulnerability in the EbCrypt.eb_c_PRNGenerator.1 ActiveX control in EBCRYPT.DLL 2.0.0.2087 and earlier in EB Design ebCrypt allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the SaveToFile method. NOTE: some of these details are obtained from third party information.

Reference

http://osvdb.org/37736 http://secunia.com/advisories/26959 http://shinnai.altervista.org/exploits/txt/TXT_ZzLXiITIfSuVuh1kPHDP.html http://www.securityfocus.com/bid/25787 https://exchange.xforce.ibmcloud.com/vulnerabilities/36769 https://www.exploit-db.com/exploits/4453