CyberSec.Space Logo
Back to CVE Browser

CVE-2007-2563

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.0600%
EPSS Percentile35.54th
PublishedMay 9, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Buffer overflow in the AddFile function in VersalSoft HTTP File Upload ActiveX control (UFileUploaderD.dll) allows remote attackers to execute arbitrary code via a long argument.

Affected Platforms (CPE)

πŸ“¦
Versalsoft

Http File Upload Activex Control

All versions

References & Advisories

πŸ”— http://moaxb.blogspot.com/2007/05/moaxb-07-versalsoft-http-file-uploader.html
πŸ”— http://osvdb.org/34339
πŸ”— http://secunia.com/advisories/25156
πŸ”— http://www.securityfocus.com/bid/23853
πŸ”— http://www.shinnai.altervista.org/moaxb/20070507/ufile.txt
πŸ”— http://www.vupen.com/english/advisories/2007/1672
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/34123
πŸ”— http://moaxb.blogspot.com/2007/05/moaxb-07-versalsoft-http-file-uploader.html

Related Vulnerabilities

CVE-2008-66388.8

Insecure method vulnerability in the Versalsoft HTTP Image Uploader ActiveX control (UUploaderSvrD.dll 6.0.0.35) allows remote att...

CVE-2008-44936.8

Microsoft PicturePusher ActiveX control (PipPPush.DLL 7.00.0709), as used in Microsoft Digital Image 2006 Starter Edition, allows ...

CVE-2010-25845.0

The Upload method in the RealPage Module Upload ActiveX control in Realpage.dll 1.0.0.9 in RealPage Module ActiveX Controls does n...

CVE-2007-350010.0

Xeweb XEForum allows remote attackers to gain privileges via a modified xeforum cookie.