Unrated severityNVD Advisory· Published Sep 19, 2007· Updated Apr 23, 2026

CVE-2007-4982

Description

Multiple absolute path traversal vulnerabilities in the MW6QRCode.QRCode.1 ActiveX control in MW6QRCode.dll in MW6 Technologies QRCode ActiveX 3.0.0.1 and earlier allow remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the (1) SaveAsBMP or (2) SaveAsWMF method. NOTE: some of these details are obtained from third party information.

Affected products

Mw6 Technologies/Qrcode Activex
cpe:2.3:a:mw6_technologies:qrcode_activex:*:*:*:*:*:*:*:*
Range: <=3.0.0.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/26836nvdVendor Advisory
osvdb.org/37914nvd
osvdb.org/37915nvd
www.securityfocus.com/bid/25702nvd
www.shinnai.altervista.org/exploits/OREurGhGgAtlCT8J2jSY.htmlnvd
www.vupen.com/english/advisories/2007/3195nvd
exchange.xforce.ibmcloud.com/vulnerabilities/36666nvd
www.exploit-db.com/exploits/4420nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.008
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000