Aurigma.Image.Uploader.ActiveX.Control.Code.Execution

description-logoDescription

This indicates an attempt to exploit one of several buffer overflow vulnerabilities in Aurigma Image Uploader.
There are multiple stack based buffer overflow vulnerabilities in an Aurigma Image Uploader ActiveX control, ImageUploader4.ocx, which is used by Facebook PhotoUploader. The vulnerabilities allow remote attackers to execute arbitrary code via long properties.

affected-products-logoAffected Products

Aurigma ImageUploader4 4.5.70.0 and 4.5.126.0
Aurigma ImageUploader4 4.6.17.0
Aurigma ImageUploader5 5.0.10.0
Facebook PhotoUploader 4.5.57.0

Impact logoImpact

System Compromise: remote code execution.

recomended-action-logoRecommended Actions

Update this ActiveX control to the latest version.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)