Vulnerability Description
The (1) Import.LoadFromURL and (2) Export.asText.SaveToFile functions in TeeChart Pro ActiveX control (TeeChart7.ocx) allow remote attackers to download a crafted .tee file to an arbitrary location. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Steema Software | Teechart Pro | 7.0.1.3 |
References
- http://osvdb.org/33534
- http://secunia.com/advisories/24263Vendor Advisory
- http://www.securityfocus.com/bid/22689Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32694
- http://osvdb.org/33534
- http://secunia.com/advisories/24263Vendor Advisory
- http://www.securityfocus.com/bid/22689Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32694
FAQ
What is CVE-2007-1120?
CVE-2007-1120 is a vulnerability with a CVSS score of 9.3 (HIGH). The (1) Import.LoadFromURL and (2) Export.asText.SaveToFile functions in TeeChart Pro ActiveX control (TeeChart7.ocx) allow remote attackers to download a crafted .tee file to an arbitrary location. ...
How severe is CVE-2007-1120?
CVE-2007-1120 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-1120?
Check the references section above for vendor advisories and patch information. Affected products include: Steema Software Teechart Pro.