CVE-2011-5290 Information

Description

The SaveToFile method in the UniBasicPack.UniTextBox ActiveX control in UniBasic100_EDA1811C.ocx in IDrive Online Backup 3.4.0 allows remote attackers to write to arbitrary files via a pathname in the first argument.

Reference

https://www.htbridge.com/advisory/HTB23025