Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0748

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-0748
Last Modified 07 Mar 2011 10:05:23
Published 13 Feb 2008 03:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0748

Summary

Buffer overflow in the Sony AxRUploadServer.AxRUploadControl.1 ActiveX control in AxRUploadServer.dll 1.0.0.38 in SonyISUpload.cab 1.0.0.38 for Sony ImageStation allows remote attackers to execute arbitrary code via a long argument to the SetLogging method. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Sony Axruploadserver Activex Control 1.0.0.38

  • Sony Imagestation


References

VUPEN - ADV-2008-0483

BID - 27715

BUGTRAQ - 20080208 Re: Buffer Overflow Vulnerability in AxRUploadServer.dll, Activex Method (SetLogging)

BUGTRAQ - 20080208 Buffer Overflow Vulnerability in AxRUploadServer.dll, Activex Method (SetLogging)

MILW0RM - 5100

MILW0RM - 5086

SECUNIA - 28854

SREASON - 3648


Last Updated: 27 May 2016 10:46:54