Vulnerabilities > CVE-2006-1176 - Remote Buffer Overflow vulnerability in EBay Enhanced Picture Service ActiveX
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Buffer overflow in eBay Enhanced Picture Services (aka EPUImageControl Class) in EUPWALcontrol.dll before 1.0.3.48, as used in Sell Your Item (SYI), Setup & Test eBay Enhanced Picture Services, Picture Manager Enhanced Uploader, and CARad.com Add Vehicle, allows remote attackers to execute arbitrary code via a crafted HTML document.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- http://secunia.com/advisories/20969
- http://securitytracker.com/id?1016445
- http://www.kb.cert.org/vuls/id/597721
- http://www.kb.cert.org/vuls/id/MIMG-6QKPVH
- http://www.securityfocus.com/bid/18921
- http://www.vupen.com/english/advisories/2006/2698
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27631