Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA10079
HistoryFeb 07, 2008 - 12:00 a.m.

KLA10079 ACE vulnerability in Aurigma Image Uploader

2008-02-0700:00:00
Kaspersky Lab
threats.kaspersky.com
29

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.774

Percentile

98.2%

JSON

A buffer overflow vulnerability was found in the Aurigma Image Uploader ActiveX control. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to unknown applications via specially designed properties.

Original advisories

Exploitation

Public exploits exist for this vulnerability.

Related products

Aurigma-Image-Uploader-ActiveX-Control

CVE list

CVE-2008-0660 critical

Solution

Update to latest version

Impacts

  • ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

Affected Products

  • Aurigma Image Uploader ActiveX controlΒ 4 versions 4.6.70.0, 4.5.126.0 and 4.6.17.0Aurigma Image Uploader ActiveX control 5 version 5.0.10.0

Related

saint 4
cvelist 1
nvd 1
prion 1
checkpoint_advisories 2
d2 1
cve 1
exploitdb 1
cert 1
nessus 1
saint
saint
Facebook PhotoUploader ActiveX control ExtractIptc buffer overflow
2008-05-19 00:00:00
Facebook PhotoUploader ActiveX control ExtractIptc buffer overflow
2008-05-19 00:00:00
Facebook PhotoUploader ActiveX control ExtractIptc buffer overflow
2008-05-19 00:00:00
cvelist
cvelist
CVE-2008-0660
2008-02-08 01:00:00
nvd
nvd
CVE-2008-0660
2008-02-08 02:00:00
prion
prion
Stack overflow
2008-02-08 02:00:00
checkpoint_advisories
checkpoint_advisories
Facebook Photo Uploader ActiveX Control FileMask Method Buffer Overflow - Ver2 (CVE-2008-0660)
2014-12-28 00:00:00
Facebook Photo Uploader ActiveX Control FileMask Method Buffer Overflow (CVE-2008-0660)
2009-12-14 00:00:00
d2
d2
DSquare Exploit Pack: D2SEC_FACEBOOK
2008-02-08 02:00:00
cve
cve
CVE-2008-0660
2008-02-08 02:00:00
exploitdb
exploitdb
FaceBook PhotoUploader - 'ImageUploader4.ocx 4.5.57.0' Remote Buffer Overflow
2008-02-03 00:00:00
cert
cert
Aurigma ImageUploader ActiveX control stack buffer overflows
2008-02-04 00:00:00
nessus
nessus
Facebook Photo Uploader ActiveX Control < 4.5.57.1 Multiple Buffer Overflows
2008-02-05 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.774

Percentile

98.2%

JSON
Related for KLA10079
saint4cvelist1nvd1prion1checkpoint_advisories2d21cve1exploitdb1cert1nessus1