|Improper Restriction of Operations within the Bounds of a Memory Buffer|
|Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')|
|Vulnerability||Severity Score||Release Date||Summary|
|CVE-2007-4903||7.5||Sept. 17, 2007||
Multiple buffer overflows in a certain ActiveX control in CryptoX.dll 2.0 and earlier in the Ultra Crypto Component allow remote attackers to execute arbitrary code via (1) a long string in the first argument to the AcquireContext method or (2) an unspecified vector to the DeleteContext method.
|CVE-2007-4902||6.4||Sept. 17, 2007||
Absolute path traversal vulnerability in a certain ActiveX control in CryptoX.dll 2.0 and earlier in the Ultra Crypto Component allows remote attackers to write to arbitrary files via a full pathname in the argument to the SaveToFile method.