Microsoft · Zune · CVE-2008-1933
**Name of the Vulnerable Software and Affected Versions**
Zune (affected versions not specified)
**Description**
The issue is related to an absolute path traversal vulnerability in a certain ActiveX control. This allows user-assisted remote attackers to overwrite arbitrary files via the `SaveToFile` method, but only if the victim explicitly allows the code to run.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.