Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2008-0660
HistoryFeb 08, 2008 - 2:00 a.m.

CVE-2008-0660

2008-02-0802:00:00
CWE-119
mitre
web.nvd.nist.gov
43
cve-2008-0660
buffer overflows
aurigma image uploader
activex control
arbitrary code execution
facebook photouploader
nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.774

Percentile

98.2%

JSON

Multiple stack-based buffer overflows in Aurigma Image Uploader ActiveX control (ImageUploader4.ocx) 4.6.17.0, 4.5.70.0, and 4.5.126.0, and ImageUploader5 5.0.10.0, as used by Facebook PhotoUploader 4.5.57.0, allow remote attackers to execute arbitrary code via long (1) ExtractExif and (2) ExtractIptc properties.

Affected configurations

Nvd
Node
aurigmaimage_uploader_activex_controlMatch4.5.70.0
OR
aurigmaimage_uploader_activex_controlMatch4.5.126.0
OR
aurigmaimage_uploader_activex_controlMatch4.6.17.0
OR
aurigmaimage_uploader_activex_controlMatch5.0.10.0
OR
facebookfacebook
OR
facebookphotouploaderMatch4.5.57.0
VendorProductVersionCPE
aurigmaimage_uploader_activex_control4.5.70.0cpe:2.3:a:aurigma:image_uploader_activex_control:4.5.70.0:*:*:*:*:*:*:*
aurigmaimage_uploader_activex_control4.5.126.0cpe:2.3:a:aurigma:image_uploader_activex_control:4.5.126.0:*:*:*:*:*:*:*
aurigmaimage_uploader_activex_control4.6.17.0cpe:2.3:a:aurigma:image_uploader_activex_control:4.6.17.0:*:*:*:*:*:*:*
aurigmaimage_uploader_activex_control5.0.10.0cpe:2.3:a:aurigma:image_uploader_activex_control:5.0.10.0:*:*:*:*:*:*:*
facebookfacebook*cpe:2.3:a:facebook:facebook:*:*:*:*:*:*:*:*
facebookphotouploader4.5.57.0cpe:2.3:a:facebook:photouploader:4.5.57.0:*:*:*:*:*:*:*

Related

saint 4
cvelist 1
nvd 1
checkpoint_advisories 2
d2 1
prion 1
kaspersky 1
exploitdb 1
cert 1
nessus 1
saint
saint
Facebook PhotoUploader ActiveX control ExtractIptc buffer overflow
2008-05-19 00:00:00
Facebook PhotoUploader ActiveX control ExtractIptc buffer overflow
2008-05-19 00:00:00
Facebook PhotoUploader ActiveX control ExtractIptc buffer overflow
2008-05-19 00:00:00
cvelist
cvelist
CVE-2008-0660
2008-02-08 01:00:00
nvd
nvd
CVE-2008-0660
2008-02-08 02:00:00
checkpoint_advisories
checkpoint_advisories
Facebook Photo Uploader ActiveX Control FileMask Method Buffer Overflow - Ver2 (CVE-2008-0660)
2014-12-28 00:00:00
Facebook Photo Uploader ActiveX Control FileMask Method Buffer Overflow (CVE-2008-0660)
2009-12-14 00:00:00
d2
d2
DSquare Exploit Pack: D2SEC_FACEBOOK
2008-02-08 02:00:00
prion
prion
Stack overflow
2008-02-08 02:00:00
kaspersky
kaspersky
KLA10079 ACE vulnerability in Aurigma Image Uploader
2008-02-07 00:00:00
exploitdb
exploitdb
FaceBook PhotoUploader - 'ImageUploader4.ocx 4.5.57.0' Remote Buffer Overflow
2008-02-03 00:00:00
cert
cert
Aurigma ImageUploader ActiveX control stack buffer overflows
2008-02-04 00:00:00
nessus
nessus
Facebook Photo Uploader ActiveX Control < 4.5.57.1 Multiple Buffer Overflows
2008-02-05 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.774

Percentile

98.2%

JSON
Related for CVE-2008-0660
saint4cvelist1nvd1checkpoint_advisories2d21prion1kaspersky1exploitdb1cert1nessus1