CVE-2007-3076

Zenturi ProgramChecker - Arbitrary File Download via ActiveX DownloadFile Function

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-3076. PoCs published by shinnai.

AI-analyzed exploit summary This exploit leverages the Zenturi ProgramChecker ActiveX control (sasatl.dll) to arbitrarily download and overwrite files on a victim's system via the DownloadFile method. It demonstrates the vulnerability by downloading a text file to the root of the C: drive.

Description

A certain ActiveX control in sasatl.dll in Zenturi ProgramChecker allows remote attackers to download arbitrary files to the client system via the DownloadFile function.

Exploits (1)

exploitdb WORKING POC VERIFIED
by shinnai · htmlremotewindows
https://www.exploit-db.com/exploits/4008

This exploit leverages the Zenturi ProgramChecker ActiveX control (sasatl.dll) to arbitrarily download and overwrite files on a victim's system via the DownloadFile method. It demonstrates the vulnerability by downloading a text file to the root of the C: drive.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Zenturi ProgramChecker ActiveX (sasatl.dll)
No auth needed
Prerequisites: Victim must visit a malicious webpage or open a malicious HTML file · ActiveX control must be installed and enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2000
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/36046
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/24377
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25468

Scores

EPSS 0.0259
EPSS Percentile 83.3%

Details

Status published
Products (1)
zenturi/zenturi_programchecker
Published Jun 06, 2007
Tracked Since Feb 18, 2026