Multiple insecure method vulnerabilities in Idefense Labs COMRaider allow remote attackers to create or overwrite arbitrary files via the (1) CreateFolder and (2) Copy methods. NOTE: this might only be a vulnerability in certain insecure configurations of Internet Explorer.
http://www.securityfocus.com/archive/1/505042/100/0/threaded
http://www.juniper.net/security/auto/vulnerabilities/vuln35725.html