WeOnlyDo SFTP ActiveX Control Remote Arbitrary File Access Vulnerability

The wodSFTP ActiveX control is prone to an arbitrary file-access vulnerability.

An attacker can exploit this issue to upload arbitrary files to a victim user's computer or to download arbitrary files from the victim's computer in the context of the vulnerable application using the ActiveX control.


Privacy Statement
Copyright 2010, SecurityFocus