CVE-2008-5089

Multiple insecure method vulnerabilities in the DDActiveReportsViewer2.ARViewer2 ActiveX control (arview2.ocx) in Data Dynamics ActiveReports 2.5.0.1314 allow remote attackers to overwrite arbitrary files via a call to the (1) Pages.Save, (2) PrintReport, or (3) Canvas.Save method.

Date published : 2008-11-14

http://www.securityfocus.com/bid/31227

http://vuln.sg/ddarviewer2501314-en.html