Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Microsoft PicturePusher ActiveX control (PipPPush.DLL 7.00.0709), as used in Microsoft Digital Image 2006 Starter Edition, allows remote attackers to force the upload of arbitrary files by using the AddString and Post methods and a modified PostURL to construct an HTTP POST request. NOTE: this issue might only be exploitable in limited environments or non-default browser settings.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
microsoft digital_image ’PipPPush.DLL’ 输入验证错误漏洞
Vulnerability Description
Microsoft PicturePusher ActiveX控件(PipPPush.DLL 7.00.0709),在Microsoft Digital Image 2006 Starter Edition中使用时,远程攻击者可以通过运行AddString和Post方法以及一个修改过的PostURL来构建一个HTTP POST请求以强制任意文件上传。
CVSS Information
N/A
Vulnerability Type
N/A