CVE-2008-4925

Multiple insecure method vulnerabilities in MW6 Technologies DataMatrix ActiveX control (DATAMATRIXLib.MW6DataMatrix, DataMatrix.dll) 3.0.0.1 allow remote attackers to overwrite arbitrary files via a full pathname argument to the (1) SaveAsBMP and (2) SaveAsWMF methods.

Published: Nov 4, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-4925
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9
AV:N/AC:L/Au:S/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
mw6_technologies / datamatrix_activex	3.0.0.1	3.0.0.1.x

http://secunia.com/advisories/32425
http://securityreason.com/securityalert/4563
http://www.securityfocus.com/bid/31980
https://www.exploit-db.com/exploits/6872

Vulnerability Database

289,599

CVE-2008-4925