CVE-2011-5293

ThreeDify Designer 5.0.2 - Arbitrary File Write via cmdSave Method

Title source: llm
STIX 2.1

Description

The cmdSave method in the ThreeDify.ThreeDifyDesigner.1 ActiveX control in ActiveSolid.dll in ThreeDify Designer 5.0.2 allows remote attackers to write to arbitrary files via a pathname in the argument.

References (1)

Core 1
Core References

Scores

EPSS 0.0208
EPSS Percentile 79.3%

Details

CWE
CWE-119
Status published
Products (1)
threediffy/threedify_designer 5.0.2
Published Jan 01, 2015
Tracked Since Feb 18, 2026