PT-2008-6763 · Facebook · Facebook Photouploader Activex Control

Publicado

2008-12-24

·

Atualizado

2017-09-29

·

CVE-2008-5711

CVSS v2.0

9.3

Alta

VetorAV:N/AC:M/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Facebook PhotoUploader ActiveX control version 5.0.14.0 and earlier
Description A heap-based buffer overflow issue allows remote attackers to execute arbitrary code via a long FileMask property value.
Recommendations For Facebook PhotoUploader ActiveX control version 5.0.14.0 and earlier, consider disabling the ActiveX control until a patch is available to prevent exploitation.

Exploit

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2008-5711

Produtos afetados

Facebook Photouploader Activex Control