Pegasus.Imaging.ThumbnailXpress.ActiveX.File.Deletion
Description
This indicates an attempt to exploit an arbitrary file delete vulnerability in Pegasus Imaging ThumbnailXpress.
Pegasus Imaging ThumbnailXpress ActiveX Control contains an arbitrary file delete vulnerability through the "CacheFile" method. An attacker can exploit this to delete arbitrary files on an affected computer.
Affected Products
Pegasus Imaging Corporation. ThumbnailXpress 1.0
Impact
System Compromise: Arbitrary File Deletion.
Recommended Actions
No patch is currently available. Set the kill bit on the vulnerable ActiveX Control.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2021-01-11 | 16.995 |