7 matches found
Ultra Shareware Office Control ActiveX HttpUpload Buffer Overflow
No description provided by source. $Id: ultraofficehttpupload.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...
Ultra Shareware Office Control - ActiveX HttpUpload Buffer Overflow (Metasploit)
$Id: ultraofficehttpupload.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Ultra Shareware Office Control ActiveX HttpUpload Buffer Overflow
$Id: ultraofficehttpupload.rb 8705 2010-03-04 06:19:37Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Ultra Shareware Office Control ActiveX HttpUpload Buffer Overflow
This module exploits a stack-based buffer overflow in Ultra Shareware's Office Control. When processing the 'HttpUpload' method, the arguments are concatenated together to form a command line to run a bundled version of cURL. If the command fails to run, a stack-based buffer overflow occurs when...
CVE-2008-3878
CVE-2008-3878 affects Ultra Office Control (OfficeCtrl.ocx) in Ultra Shareware Ultra Office Control: stack-based buffer overflow in HttpUpload with overly long strUrl, strFile, and strPostData parameters, enabling remote code execution. Public records show documented exploitation paths (e.g., Met...
CVE-2008-3878
Stack-based buffer overflow in the Ultra.OfficeControl ActiveX control in OfficeCtrl.ocx 2.0.2008.801 in Ultra Shareware Ultra Office Control allows remote attackers to execute arbitrary code via long strUrl, strFile, and strPostData parameters to the HttpUpload method...
CVE-2008-3878
creationtimestamp| type| source ---|---|--- 2008-08-27 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6318 2010-09-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16513 2018-05-29 15:50:33+00:00| seen|...