Lucene search
K

5 matches found

NVD
NVD
added 2008/10/08 10:0 p.m.13 views

CVE-2008-4493

Microsoft PicturePusher ActiveX control PipPPush.DLL 7.00.0709, as used in Microsoft Digital Image 2006 Starter Edition, allows remote attackers to force the upload of arbitrary files by using the AddString and Post methods and a modified PostURL to construct an HTTP POST request. NOTE: this issu...

6.8CVSS6.8AI score0.17589EPSS
Exploits1References5
Prion
Prion
added 2008/10/08 10:0 p.m.12 views

Design/Logic Flaw

Microsoft PicturePusher ActiveX control PipPPush.DLL 7.00.0709, as used in Microsoft Digital Image 2006 Starter Edition, allows remote attackers to force the upload of arbitrary files by using the AddString and Post methods and a modified PostURL to construct an HTTP POST request. NOTE: this issu...

6.8CVSS7.4AI score0.17589EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2008/10/08 8:44 p.m.18 views

CVE-2008-4493

Microsoft PicturePusher ActiveX control PipPPush.DLL 7.00.0709, as used in Microsoft Digital Image 2006 Starter Edition, allows remote attackers to force the upload of arbitrary files by using the AddString and Post methods and a modified PostURL to construct an HTTP POST request. NOTE: this issu...

6.8AI score0.17589EPSS
Exploits1References5
seebug.org
seebug.org
added 2008/10/08 12:0 a.m.13 views

Microsoft PicturePusher ActiveX Cross Site File Upload Attack PoC

No description provided by source. !-- Microsoft PicturePusher ActiveX PipPPush.DLL 7.00.0709 remote Cross Site File Upload attack POC IE6 by Nine:Situations:Group::pyrokinesis bug discovered by rgod during early March 2008 tested software: Microsoft Digital Image 2006 Starter Edition works fine...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/10/08 12:0 a.m.16 views

Microsoft PicturePusher - ActiveX Cross-Site Arbitrary File Upload

Microsoft PicturePusher - ActiveX Cross-Site Arbitrary File Upload 'PicturePusherControl.PostURL = "http://127.0.0.1/?aaaa=1" PicturePusherControl.PostURL = "http://192.168.1.1/?aaaa=1" PicturePusherControl.Add...

0.2AI score
Exploits0
Rows per page
Query Builder