Synactis.SaveDoc.Arbitrary.File.Overwrite
Description
This indicates an attack attempt against an arbitrary file overwrite vulnerability in Synactis ALL In-The-Box ActiveX control.
The vulnerability is a result of the ActiveX control's failure to properly sanitize the parameter passed to its SaveDoc method. A remote attacker can exploit this to create or overwrite arbitrary local files on the victim's computer.
Affected Products
Synactis ALL In-The-Box ActiveX 3
Impact
System Compromise: Remote attackers can overwrite arbitrary files.
Recommended Actions
Currently we are not aware of any vendor supplied patch for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |