cpe:/a:ultra_shareware:ultra_crypto_component:2.0.2007.801 CVE-2007-4902 2007-09-17T12:17:00.000-04:00 2017-09-28T21:29:24.923-04:00 6.4 NETWORK LOW NONE NONE PARTIAL PARTIAL http://nvd.nist.gov 2007-09-18T12:48:00.000-04:00 SECTRACK 1018675 BID 25611 OSVDB 38982 EXPLOIT-DB 4388 XF ultracrypto-cryptox-file-overwrite(36522) Absolute path traversal vulnerability in a certain ActiveX control in CryptoX.dll 2.0 and earlier in the Ultra Crypto Component allows remote attackers to write to arbitrary files via a full pathname in the argument to the SaveToFile method.