cpe:/a:pegasus_imaging:imagxpress:8.0 CVE-2007-5320 2007-10-09T18:17:00.000-04:00 2017-07-28T21:33:35.850-04:00 4.0 NETWORK HIGH NONE NONE PARTIAL PARTIAL http://nvd.nist.gov 2007-10-09T19:48:00.000-04:00 BID 25948 BID 25949 SECUNIA 27095 OSVDB 37959 OSVDB 37960 VUPEN ADV-2007-3388 MISC http://shinnai.altervista.org/exploits/txt/TXT_3DQ1nIkI6zmWCek4zP5U.html MISC http://shinnai.altervista.org/exploits/txt/TXT_wfv7ZG0G6KnQlk1SieLd.html XF imagxpress-imagxpress8-file-overwrite(37012) Multiple absolute path traversal vulnerabilities in Pegasus Imaging ImagXpress 8.0 allow remote attackers to (1) delete arbitrary files via the CacheFile attribute in the ThumbnailXpres.1 ActiveX control (PegasusImaging.ActiveX.ThumnailXpress1.dll) or (2) overwrite arbitrary files via the CompactFile function in the ImagXpress.8 ActiveX control (PegasusImaging.ActiveX.ImagXpress8.dll).