Vulnerability Description
The ImageShack Toolbar ActiveX control (ImageShackToolbar.dll) in ImageShack Toolbar 4.5.7, possibly including 4.5.7.69, allows remote attackers to force the upload of arbitrary image files to the ImageShack site via a file: URI argument to the BuildSlideShow method.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Imageshack | Imageshack Toolbar | 4.5.7 |
Related Weaknesses (CWE)
References
- http://osvdb.org/40628
- http://secunia.com/advisories/28644Vendor Advisory
- http://securityreason.com/securityalert/4410
- http://www.securityfocus.com/archive/1/486941/100/200/threaded
- http://www.securityfocus.com/bid/27439
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39921
- https://www.exploit-db.com/exploits/4981
- http://osvdb.org/40628
- http://secunia.com/advisories/28644Vendor Advisory
- http://securityreason.com/securityalert/4410
- http://www.securityfocus.com/archive/1/486941/100/200/threaded
- http://www.securityfocus.com/bid/27439
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39921
- https://www.exploit-db.com/exploits/4981
FAQ
What is CVE-2008-4549?
CVE-2008-4549 is a vulnerability with a CVSS score of 2.6 (LOW). The ImageShack Toolbar ActiveX control (ImageShackToolbar.dll) in ImageShack Toolbar 4.5.7, possibly including 4.5.7.69, allows remote attackers to force the upload of arbitrary image files to the Ima...
How severe is CVE-2008-4549?
CVE-2008-4549 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-4549?
Check the references section above for vendor advisories and patch information. Affected products include: Imageshack Imageshack Toolbar.