Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1176

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-1176
Last Modified 07 Mar 2011 09:32:19
Published 07 Jul 2006 08:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1176

Summary

Buffer overflow in eBay Enhanced Picture Services (aka EPUImageControl Class) in EUPWALcontrol.dll before 1.0.3.48, as used in Sell Your Item (SYI), Setup & Test eBay Enhanced Picture Services, Picture Manager Enhanced Uploader, and CARad.com Add Vehicle, allows remote attackers to execute arbitrary code via a crafted HTML document.

Vulnerable Systems

Application

  • Ebay Enhanced Picture Services 1.0.3.36


References

CERT-VN - VU#597721

XF - ebay-epuimagecontrol-bo(27631)

VUPEN - ADV-2006-2698

BID - 18921

CONFIRM - http://www.kb.cert.org/vuls/id/MIMG-6QKPVH

SECTRACK - 1016445

SECUNIA - 20969


Last Updated: 27 May 2016 10:41:58