CVE-2008-0660

Multiple stack-based buffer overflows in Aurigma Image Uploader ActiveX control (ImageUploader4.ocx) 4.6.17.0, 4.5.70.0, and 4.5.126.0, and ImageUploader5 5.0.10.0, as used by Facebook PhotoUploader 4.5.57.0, allow remote attackers to execute arbitrary code via long (1) ExtractExif and (2) ExtractIptc properties.
Severity
UNKNOWN
AV:N/AC:M/Au:N/C:C/I:C/A:C
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: 98%
VendorProductVersion
aurigmaimage_uploader_activex_control
4.5.70.0
aurigmaimage_uploader_activex_control
4.5.126.0
aurigmaimage_uploader_activex_control
4.6.17.0
aurigmaimage_uploader_activex_control
5.0.10.0
facebookfacebook
*
facebookphotouploader
4.5.57.0
𝑥
= Vulnerable software versions