Edraw: >> Office Viewer Component >> 4.0.5.20 Security Vulnerabilities
A certain ActiveX control in the EDraw Office Viewer Component (edrawofficeviewer.ocx) 4.0.5.20, and other versions before 5.0, allows remote attackers to delete arbitrary files via the DeleteLocalFile method.
CVSS Score
7.8
EPSS Score
0.12
Published
2007-06-11
Buffer overflow in a certain ActiveX control in the EDraw Office Viewer Component (edrawofficeviewer.ocx) 4.0.5.20, and other versions before 5.0, allows remote attackers to cause a denial of service (Internet Explorer 7 crash) or execute arbitrary code via a long first argument to the HttpDownloadFile method.
CVSS Score
9.3
EPSS Score
0.314
Published
2007-06-11