CVE-2011-5293

EUVD-2011-5192
The cmdSave method in the ThreeDify.ThreeDifyDesigner.1 ActiveX control in ActiveSolid.dll in ThreeDify Designer 5.0.2 allows remote attackers to write to arbitrary files via a pathname in the argument.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 73%
Affected Products (NVD)
VendorProductVersion
threediffythreedify_designer
5.0.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.htbridge.com/advisory/HTB23020
https://www.htbridge.com/advisory/HTB23020