cpe:/a:geovision:livex_activex_control:8.1.2.0 cpe:/a:geovision:livex_activex_control:8.2.0.0 CVE-2009-0865 2009-03-10T10:30:00.313-04:00 2017-10-18T21:30:18.223-04:00 8.8 NETWORK MEDIUM NONE NONE COMPLETE COMPLETE http://nvd.nist.gov 2009-03-10T14:53:00.000-04:00 BID 33782 SECUNIA 33969 EXPLOIT-DB 8059 XF geovision-livex-activex-file-overwrite(48773) Directory traversal vulnerability in the SnapShotToFile method in the GeoVision LiveX (aka LiveX_v8200) ActiveX control 8.1.2 and 8.2.0 in LIVEX_~1.OCX allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in the argument, possibly involving the PlayX and SnapShotX methods.