CVE-2007-5110

EB Design ebCrypt <= 2.0.0.2087 - Arbitrary File Write via SaveToFile Method

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-5110. PoCs published by shinnai.

AI-analyzed exploit summary This exploit demonstrates two vulnerabilities in EB Design Pty Ltd's EBCRYPT.DLL v.2.0: a DoS via the AddString() method and arbitrary file overwrite via the SaveToFile() method. The PoC uses VBScript to trigger these vulnerabilities in Internet Explorer.

Description

Absolute path traversal vulnerability in the EbCrypt.eb_c_PRNGenerator.1 ActiveX control in EBCRYPT.DLL 2.0.0.2087 and earlier in EB Design ebCrypt allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the SaveToFile method. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by shinnai · htmlremotewindows

https://www.exploit-db.com/exploits/4453

View Code ZIP pw:eip

This exploit demonstrates two vulnerabilities in EB Design Pty Ltd's EBCRYPT.DLL v.2.0: a DoS via the AddString() method and arbitrary file overwrite via the SaveToFile() method. The PoC uses VBScript to trigger these vulnerabilities in Internet Explorer.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: EB Design Pty Ltd EBCRYPT.DLL v.2.0

No auth needed

Prerequisites: Internet Explorer with the vulnerable ActiveX control installed

MITRE ATT&CK