EUVD-2008-4434

Malware in sbrugna...

DotNetNuke SaveAsPDF 1.0 Arbitrary File Download

Exploit Title : DotNetNuke SaveAsPDF Modules 1.0 Arbitrary File Download Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 12/03/2019 Vendor Homepage : bizmodules.net dnnsoftware.com Software Information Links :...

GdPicture Pro 'gdpicture4s.ocx' ActiveX控件任意文件覆盖漏洞

BUGTRAQ ID:31504 CNCAN ID：CNCAN-2008100305 GdPicture Pro是一款支持多格式的图像管理软件。 GdPicture Pro包含的gdpicture4s.ocx ActiveX控件存在设计错误，远程攻击者可以利用漏洞以应用程序权限覆盖系统文件。 SaveAsPDF方法允许通过sFilePath参数建立和覆盖文件，通过使用其他参数，如sTitle，攻击者可以注入HTML代码，使用hcp://协议执行。GdPicturePro5.Imaging也存在此漏洞。 GdPicture GdPicture Pro GdPicture GdPicture...

Remote code execution

The GdPicture 1 Light Imaging Toolkit 4.7.1 GdPicture4S.Imaging ActiveX control gdpicture4s.ocx 4.7.0.1 and 2 Pro Imaging SDK 5.7.1 GdPicturePro5S.Imaging ActiveX control gdpicturepro5s.ocx 5.7.0.1 allows remote attackers to create, overwrite, and modify arbitrary files via the SaveAsPDF method...

CVE-2008-4453

The CVE-2008-4453 issue affects GdPicture Pro Imaging SDK 5.7.1 (GdPicturePro5S.Imaging) and GdPicture Light Imaging Toolkit 4.7.1 (GdPicture4S.Imaging) ActiveX controls (gdpicture4s.ocx, gdpicturepro5s.ocx). The SaveAsPDF method fails to validate input to the sFilePath parameter, enabling remote...

GdPicture Multiple ActiveX Control SaveAsPDF Method Arbitrary File Overwrite

The remote host contains the GdPicturePro5S.Imaging or GdPicture4S.Imaging ActiveX control, which is used to manipulate images in a variety of formats. The version of the control installed on the remote host reportedly fails to validate input to the 'sFilePath' argument of the 'SaveAsPDF' method...

gdpicture-exec.txt

var cmd = "cmd /c net user test test /add & net localgroup Administrators test /add"; var outFile = "c:\windows\pchealth\helpctr\system\errors\badurl.htm"; var BMP = "\x42\x4d\x42\x00\x0...