|
|
Info |
Last Modified |
| 9 months ago |
|
|
|
|
|
This Entry needs help! It is only 25% Complete. Click the edit link above to add more information.
Contributing is fast and easy, and benefits the entire security community.
|
Keywords |
Clsid: E8512363-3581-42EF-A43D-990E7935C8BE
|
|
Description |
(Description Provided by CVE) : The GdPicture (1) Light Imaging Toolkit 4.7.1 GdPicture4S.Imaging ActiveX control (gdpicture4s.ocx) 4.7.0.1 and (2) Pro Imaging SDK 5.7.1 GdPicturePro5S.Imaging ActiveX control (gdpicturepro5s.ocx) 5.7.0.1 allows remote attackers to create, overwrite, and modify arbitrary files via the SaveAsPDF method. NOTE: this issue might only be exploitable in limited environments or non-default browser settings. NOTE: this can be leveraged for remote code execution by accessing files using hcp:// URLs. NOTE: some of these details are obtained from third party information.
|
|
Classification |
Location:
Remote/Network Access Required
Attack Type:
Input Manipulation
Impact:
Loss of Integrity
Solution:
No Solution
Exploit:
Exploit Available
Disclosure:
Uncoordinated Disclosure
OSVDB:
Web Related
|
|
Products |
Unknown or Incomplete
|
|
|
|
Credit |
Unknown or Incomplete
|
|
BlogsProvided by Technorati
|
None found at this time
|
|
|
