Lucene search
HistoryMar 25, 2008 - 7:44 p.m.
CVE-2008-1490
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8
Confidence
Low
EPSS
0.662
Percentile
98.0%
Buffer overflow in a certain Aurigma ActiveX control in ImageUploader4.ocx 4.1.36.0, as used with Piczo (aka Pizco) and possibly other online services, allows remote attackers to execute arbitrary code via unspecified vectors, possibly involving a long Action property, a different CLSID than CVE-2008-0659.
Affected configurations
Node
aurigmaimage_uploader_activex_controlMatch4.1.36.0
ORpiczoimageuploader4Match4.1.36.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| aurigma | image_uploader_activex_control | 4.1.36.0 | cpe:2.3:a:aurigma:image_uploader_activex_control:4.1.36.0:*:*:*:*:*:*:* |
| piczo | imageuploader4 | 4.1.36.0 | cpe:2.3:a:piczo:imageuploader4:4.1.36.0:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2008-1490
2008-03-25 19:44:00
CVE-2008-0659
2008-02-08 02:00:00
prion
prion
Buffer overflow
2008-03-25 19:44:00
Stack overflow
2008-02-08 02:00:00
cvelist
cvelist
CVE-2008-1490
2008-03-25 19:00:00
CVE-2008-0659
2008-02-08 01:00:00
nvd
nvd
CVE-2008-0659
2008-02-08 02:00:00
nessus
nessus
MySpace Uploader ActiveX Control < 1.0.0.6 Action Property Buffer Overflow
2008-02-11 00:00:00
d2
d2
DSquare Exploit Pack: D2SEC_MYSPACE
2008-02-08 02:00:00
exploitdb
exploitdb
cert
cert
Aurigma ImageUploader ActiveX control stack buffer overflows
2008-02-04 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8
Confidence
Low
EPSS
0.662
Percentile
98.0%
Related for NVD:CVE-2008-1490