admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-29 09:41:05 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2007/CVE-2007-6506.md

21 lines
1005 B
Markdown
Raw Normal View History

Update Sun May 26 14:27:04 CEST 2024
2024-05-26 14:27:05 +02:00
### [CVE-2007-6506](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6506)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
### Description
The HPRulesEngine.ContentCollection.1 ActiveX Control in RulesEngine.dll for HP Software Update 4.000.005.007 and earlier, including 3.0.8.4, allows remote attackers to (1) overwrite and corrupt arbitrary files via arguments to the SaveToFile method, and possibly (2) access arbitrary files via the LoadDataFromFile method.
### POC
#### Reference
- http://computerworld.com/action/article.do?command=viewArticleBasic&articleId=9053818
Update CVE sources 2024-06-09 00:33
2024-06-09 00:33:16 +00:00
- http://computerworld.com/action/article.do?command=viewArticleBasic&articleId=9053818
Update Sun May 26 14:27:04 CEST 2024
2024-05-26 14:27:05 +02:00
- https://www.exploit-db.com/exploits/4757
Update CVE sources 2024-06-09 00:33
2024-06-09 00:33:16 +00:00
- https://www.exploit-db.com/exploits/4757
Update Sun May 26 14:27:04 CEST 2024
2024-05-26 14:27:05 +02:00
#### Github
No PoCs found on GitHub currently.
Reference in New Issue Copy Permalink