1 results (0.003 seconds)
CVSS: 9.3EPSS: 1%CPEs: 1EXPL: 0
CVSS: 9.3EPSS: 1%CPEs: 1EXPL: 0CVE-2008-2475
https://notcve.org/view.php?id=CVE-2008-2475
eBay Enhanced Picture Uploader ActiveX control (EPUWALcontrol.dll) before 1.0.27 allows remote attackers to execute arbitrary commands via the PictureUrls property. Control eBay Enhanced Picture Uploader ActiveX (EPUWALcontrol.dll) anterior a v1.0.27, permite a atacantes remotos ejecutar comandos de su elección a través de la propiedad "PictureUrls". • http://osvdb.org/54968 http://pages.ebay.com/securitycenter/activex/index.html http://secunia.com/advisories/35412 http://www.kb.cert.org/vuls/id/983731 http://www.securityfocus.com/bid/35248 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •