EDraw Flowchart ActiveX Control Arbitrary File Overwrite Vulnerability

info
discussion
exploit
solution
references

EDraw Flowchart ActiveX Control Arbitrary File Overwrite Vulnerability

The EDraw Flowchart ActiveX Control is prone to a vulnerability that lets attackers overwrite files with arbitrary, attacker-controlled content. This will aid in further attacks.

EDraw Flowchart ActiveX Control 2.3 is vulnerable to this issue; other versions may also be affected.