LEADTOOLS.Multimedia.LTMM15.DLL.ActiveX.File.Overwrite
Description
This indicates an attack attempt against an Arbitrary File Overwrite vulnerability in LeadTools Multimedia ActiveX control component.
The vulnerability is caused by an error when the software handles a specially crafted webpage. It allows a remote attacker to create or overwrite arbitrary files via the "SaveSettingsToFile" method.
Affected Products
LeadTools Multimedia 15
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Currently we are not aware of any vendor supplied patches.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2021-01-11 | 16.995 |