CVE-2008-0492
Persits Xupload - Memory Corruption
Title source: ruleDescription
Stack-based buffer overflow in the Persits.XUpload.2 ActiveX control in XUpload.ocx 3.0.0.4 and earlier in Persits XUpload 3.0 allows remote attackers to execute arbitrary code via a long argument to the AddFile method. NOTE: some of these details are obtained from third party information.
Exploits (3)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16576
exploitdb
WORKING POC
VERIFIED
by Elazar · htmlremotewindows
https://www.exploit-db.com/exploits/4987
metasploit
WORKING POC
NORMAL
by jduck · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/hp_loadrunner_addfile.rb
References (5)
Scores
EPSS
0.7429
EPSS Percentile
98.9%
Details
CWE
CWE-119
Status
published
Products (1)
persits/xupload
3.0
Published
Jan 30, 2008
Tracked Since
Feb 18, 2026