CVE-2007-3168

A certain ActiveX control in the EDraw Office Viewer Component (edrawofficeviewer.ocx) 4.0.5.20, and other versions before 5.0, allows remote attackers to delete arbitrary files via the DeleteLocalFile method.

Date published : 2007-06-11

http://www.securityfocus.com/bid/24230

http://www.ocxt.com/archives/28