Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

S-160: MySpace Uploader 'MySpaceUploader.ocx' ActiveX Control Vulnerability

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) S-160: MySpace Uploader 'MySpaceUploader.ocx' ActiveX Control Vulnerability
# 1  
Old 02-01-2008
S-160: MySpace Uploader 'MySpaceUploader.ocx' ActiveX Control Vulnerability
MySpace Uploader ActiveX control is prone to a buffer overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. The risk is MEDIUM. Successfully exploiting this issue may allow remote attackers to execute arbitrary code in the context of the application using the ActiveX control (typically Internet Explorer). Failed exploit attempts likely result in denial-of-service conditions.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

cpan::uploader

CPAN::Uploader(3pm)					User Contributed Perl Documentation				       CPAN::Uploader(3pm)

NAME

       CPAN::Uploader - upload things to the CPAN

VERSION

       version 0.103001

METHODS

   upload_file
	 CPAN::Uploader->upload_file($file, \%arg);

	 $uploader->upload_file($file);

       Valid arguments are:

	 user	    - (required) your CPAN / PAUSE id
	 password   - (required) your CPAN / PAUSE password
	 subdir     - the directory (under your home directory) to upload to
	 http_proxy - uri of the http proxy to use
	 upload_uri - uri of the upload handler; usually the default (PAUSE) is right
	 debug	    - if set to true, spew lots more debugging output

       This method attempts to actually upload the named file to the CPAN.  It will raise an exception on error.

   new
	 my $uploader = CPAN::Uploader->new(\%arg);

       This method returns a new uploader.  You probably don't need to worry about this method.

       Valid arguments are the same as those to "upload_file".

   read_config_file
	 my $config = CPAN::Uploader->read_config_file( $filename );

       This reads the config file and returns a hashref of its contents that can be used as configuration for CPAN::Uploader.

       If no filename is given, it looks for .pause in the user's home directory (from the env var "HOME", or the current directory if "HOME"
       isn't set).

   log
	 $uploader->log($message);

       This method logs the given string.  The default behavior is to print it to the screen.  The message should not end in a newline, as one
       will be added as needed.

   log_debug
       This method behaves like "log", but only logs the message if the CPAN::Uploader is in debug mode.

ORIGIN

       This code is mostly derived from "cpan-upload-http" by Brad Fitzpatrick, which in turn was based on "cpan-upload" by Neil Bowers.  I (rjbs)
       didn't want to have to use a "system" call to run either of those, so I refactored the code into this module.

AUTHOR

       Ricardo SIGNES <rjbs@cpan.org>

COPYRIGHT AND LICENSE

       This software is copyright (c) 2012 by Ricardo SIGNES.

       This is free software; you can redistribute it and/or modify it under the same terms as the Perl 5 programming language system itself.

perl v5.14.2							    2012-03-26						       CPAN::Uploader(3pm)