Required CVE Record Information
Description
Multiple stack-based buffer overflows in Aurigma Image Uploader ActiveX control (ImageUploader4.ocx) 4.6.17.0, 4.5.70.0, and 4.5.126.0, and ImageUploader5 5.0.10.0, as used by Facebook PhotoUploader 4.5.57.0, allow remote attackers to execute arbitrary code via long (1) ExtractExif and (2) ExtractIptc properties.
References 11 Total
- seclists.org: 20080203 FaceBook/Aurigma Image/PhotoUploader Buffer Overflow mailing-list
- vupen.com: ADV-2008-0394 vdb-entry
- securityfocus.com: 27576 vdb-entry
- secunia.com: 28707 third-party-advisory
- vupen.com: ADV-2008-0391 vdb-entry
- secunia.com: 28713 third-party-advisory
- exploit-db.com: 5049 exploit
- securityfocus.com: 27577 vdb-entry
- securitytracker.com: 1019297 vdb-entry
- kb.cert.org: VU#776931 third-party-advisory
- http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9060483
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 11 Total
- seclists.org: 20080203 FaceBook/Aurigma Image/PhotoUploader Buffer Overflow mailing-listx_transferred
- vupen.com: ADV-2008-0394 vdb-entryx_transferred
- securityfocus.com: 27576 vdb-entryx_transferred
- secunia.com: 28707 third-party-advisoryx_transferred
- vupen.com: ADV-2008-0391 vdb-entryx_transferred
- secunia.com: 28713 third-party-advisoryx_transferred
- exploit-db.com: 5049 exploitx_transferred
- securityfocus.com: 27577 vdb-entryx_transferred
- securitytracker.com: 1019297 vdb-entryx_transferred
- kb.cert.org: VU#776931 third-party-advisoryx_transferred
- http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9060483 x_transferred