CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-1490

Buffer overflow in a certain Aurigma ActiveX control in ImageUploader4.ocx 4.1.36.0, as used with Piczo (aka Pizco) and possibly other online services, allows remote attackers to execute arbitrary code via unspecified vectors, possibly involving a long Action property, a different CLSID than CVE-2008-0659.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.042

EPSS Ranking 88.2%

CVSS Severity

CVSS v2 Score 9.3

References

http://marc.info/?l=bugtraq&m=120605071403813&w=2
http://secunia.com/advisories/29445
http://www.securityfocus.com/bid/28354
https://exchange.xforce.ibmcloud.com/vulnerabilities/40152
http://marc.info/?l=bugtraq&m=120605071403813&w=2
http://secunia.com/advisories/29445
http://www.securityfocus.com/bid/28354
https://exchange.xforce.ibmcloud.com/vulnerabilities/40152

Products affected by CVE-2008-1490

Aurigma » Image Uploader Activex Control » Version: 4.1.36.0

cpe:2.3:a:aurigma:image_uploader_activex_control:4.1.36.0
Piczo » Imageuploader4 » Version: 4.1.36.0

cpe:2.3:a:piczo:imageuploader4:4.1.36.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-1490

Products

Pricing

Contact Us