CVE-2008-0748

Sony AxRUploadServer ActiveX Control 1.0.0.38 - Buffer Overflow via SetLogging Method

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2008-0748. PoCs published by Elazar, Trancek.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the ImageStation ActiveX control (SonyISUpload.cab 1.0.0.38) by triggering a heap spray and executing shellcode via a maliciously crafted input to the SetLogging method.

Description

Buffer overflow in the Sony AxRUploadServer.AxRUploadControl.1 ActiveX control in AxRUploadServer.dll 1.0.0.38 in SonyISUpload.cab 1.0.0.38 for Sony ImageStation allows remote attackers to execute arbitrary code via a long argument to the SetLogging method. NOTE: some of these details are obtained from third party information.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Elazar · htmlremotewindows
https://www.exploit-db.com/exploits/5100

This exploit targets a buffer overflow vulnerability in the ImageStation ActiveX control (SonyISUpload.cab 1.0.0.38) by triggering a heap spray and executing shellcode via a maliciously crafted input to the SetLogging method.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: ImageStation ActiveX Control (SonyISUpload.cab 1.0.0.38)
No auth needed
Prerequisites: Victim must use Internet Explorer with the vulnerable ActiveX control installed · JavaScript must be enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Trancek · htmldoswindows
https://www.exploit-db.com/exploits/5086

This is a proof-of-concept exploit for a buffer overflow vulnerability in AxRUploadServer.dll, specifically targeting the SetLogging method in the ez-Upload ActiveX control. The exploit uses a VBScript to trigger the overflow with a long string of 'A's followed by 'B's to control the EIP register.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: AxRUploadServer.dll (ImageStation ez-Upload control) v1.0.0.38
No auth needed
Prerequisites: Victim must have the vulnerable ActiveX control installed and enabled in Internet Explorer
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/487802/100/0/threaded
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/3648
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/5086
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/28854
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/5100
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/27715
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/0483
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/487805/100/0/threaded

Scores

EPSS 0.1615
EPSS Percentile 96.5%

Details

CWE
CWE-119
Status published
Products (2)
sony/axruploadserver_activex_control 1.0.0.38
sony/imagestation
Published Feb 13, 2008
Tracked Since Feb 18, 2026