Lucene search
K

7 matches found

seebug.org
seebug.org
added 2008/10/07 12:0 a.m.40 views

GdPicture Pro 'gdpicture4s.ocx' ActiveX控件任意文件覆盖漏洞

BUGTRAQ ID:31504 CNCAN ID:CNCAN-2008100305 GdPicture Pro是一款支持多格式的图像管理软件。 GdPicture Pro包含的gdpicture4s.ocx ActiveX控件存在设计错误,远程攻击者可以利用漏洞以应用程序权限覆盖系统文件。 SaveAsPDF方法允许通过sFilePath参数建立和覆盖文件,通过使用其他参数,如sTitle,攻击者可以注入HTML代码,使用hcp://协议执行。GdPicturePro5.Imaging也存在此漏洞。 GdPicture GdPicture Pro GdPicture GdPicture...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2008/10/06 11:0 p.m.25 views

CVE-2008-4453

The GdPicture 1 Light Imaging Toolkit 4.7.1 GdPicture4S.Imaging ActiveX control gdpicture4s.ocx 4.7.0.1 and 2 Pro Imaging SDK 5.7.1 GdPicturePro5S.Imaging ActiveX control gdpicturepro5s.ocx 5.7.0.1 allows remote attackers to create, overwrite, and modify arbitrary files via the SaveAsPDF method...

7.7AI score0.10468EPSS
Exploits1References7
seebug.org
seebug.org
added 2008/10/01 12:0 a.m.35 views

GdPicture Pro ActiveX (gdpicture4s.ocx) File Overwrite / Exec Exploit

No description provided by source. !-- --------------------------------------------------------------------------------- GdPicture Pro ActiveX gdpicture4s.ocx Remote File Overwrite / Execution Exploit --------------------------------------------------------------------------------- author...: Egi...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/10/01 12:0 a.m.38 views

gdpicture-exec.txt

var cmd = "cmd /c net user test test /add & net localgroup Administrators test /add"; var outFile = "c:\windows\pchealth\helpctr\system\errors\badurl.htm"; var BMP = "\x42\x4d\x42\x00\x0...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/09/30 12:0 a.m.28 views

GdPicture Pro - ActiveX gdpicture4s.ocx File Overwrite Exec

GdPicture Pro - ActiveX gdpicture4s.ocx File Overwrite Exec var cmd = "cmd /c net user test test /add & net localgroup Administrators test /add"; var outFile = "c:\windows\pchealth\helpctr\system\errors\badurl.htm"; var BMP = "\x42\x4d\x4...

Exploits0
0day.today
0day.today
added 2008/09/30 12:0 a.m.30 views

GdPicture Pro ActiveX (gdpicture4s.ocx) File Overwrite / Exec Exploit

Exploit for unknown platform in category remote exploits ===================================================================== GdPicture Pro ActiveX gdpicture4s.ocx File Overwrite / Exec Exploit ===================================================================== object...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/09/30 12:0 a.m.35 views

GdPicture Pro - ActiveX 'gdpicture4s.ocx' File Overwrite / Exec

var cmd = "cmd /c net user test test /add & net localgroup Administrators test /add"; var outFile = "c:\windows\pchealth\helpctr\system\errors\badurl.htm"; var BMP = "\x42\x4d\x42\x00\x00\x00\x00...

7AI score
Exploits0
Rows per page
Query Builder