Microsoft Windows Image Acquisition Logger ActiveX Control Arbitrary File Overwrite Vulnerability

Microsoft Windows Image Acquisition Logger ActiveX control is prone to a vulnerability that lets attackers overwrite files with arbitrary, attacker-controlled content. The issue occurs because the control fails to sanitize user-supplied input.

An attacker can exploit this issue to overwrite files with attacker-supplied data, which will aid in further attacks.


 

Privacy Statement
Copyright 2010, SecurityFocus