Description
The SaveData method in the Cygnicon.ViewControl.1 ActiveX control in CyViewer.ocx in Ashampoo 3D CAD Professional 3.x before 3.0.2 allows remote attackers to write to arbitrary files via a pathname in the first argument.
Analysis and contextual insights are available on OpenCVE Cloud.
Remediation
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2011-5190 | The SaveData method in the Cygnicon.ViewControl.1 ActiveX control in CyViewer.ocx in Ashampoo 3D CAD Professional 3.x before 3.0.2 allows remote attackers to write to arbitrary files via a pathname in the first argument. |
References
| Link | Providers |
|---|---|
| https://www.htbridge.com/advisory/HTB23019 |
|
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-09-17T00:51:47.174Z
Reserved: 2014-12-31T00:00:00.000Z
Link: CVE-2011-5291
No data.
Status : Modified
Published: 2015-01-01T02:59:07.330
Modified: 2026-06-16T23:36:17.943
Link: CVE-2011-5291
No data.
OpenCVE Enrichment
No data.
Weaknesses
EUVD