Vulnerability Details CVE-2008-4549
The ImageShack Toolbar ActiveX control (ImageShackToolbar.dll) in ImageShack Toolbar 4.5.7, possibly including 4.5.7.69, allows remote attackers to force the upload of arbitrary image files to the ImageShack site via a file: URI argument to the BuildSlideShow method.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.067
EPSS Ranking 90.8%
CVSS Severity
CVSS v2 Score 2.6
References
- http://osvdb.org/40628
- http://secunia.com/advisories/28644
- http://securityreason.com/securityalert/4410
- http://www.securityfocus.com/archive/1/486941/100/200/threaded
- http://www.securityfocus.com/bid/27439
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39921
- https://www.exploit-db.com/exploits/4981
- http://osvdb.org/40628
- http://secunia.com/advisories/28644
- http://securityreason.com/securityalert/4410
- http://www.securityfocus.com/archive/1/486941/100/200/threaded
- http://www.securityfocus.com/bid/27439
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39921
- https://www.exploit-db.com/exploits/4981
Products affected by CVE-2008-4549
-
cpe:2.3:a:imageshack:imageshack_toolbar:4.5.7
-
cpe:2.3:a:imageshack:imageshack_toolbar:4.5.7.69