CVE-2011-0329
DellSystemLite.Scanner ActiveX Control - Directory Traversal via GetData Method FileID Parameter
Title source: llmDescription
Directory traversal vulnerability in the GetData method in the Dell DellSystemLite.Scanner ActiveX control in DellSystemLite.ocx 1.0.0.0 allows remote attackers to read arbitrary files via directory traversal sequences in the fileID parameter.
References (4)
Core 4
Core References
Vendor Advisory x_refsource_misc
http://secunia.com/secunia_research/2011-10/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/46443
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/42880
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1025094
Scores
EPSS
0.0026
EPSS Percentile
48.8%
Details
CWE
CWE-22
Status
published
Products (1)
dell/dellsystemlite.scanner_activex_control
1.0.0.0
Published
Feb 21, 2011
Tracked Since
Feb 18, 2026