Sony ImageStation 'AxRUploadServer.dll' ActiveX Control Remote Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

Sony ImageStation 'AxRUploadServer.dll' ActiveX Control Remote Buffer Overflow Vulnerability

UPDATE (March 26, 2008): The Symantec DeepSight Team has discovered active exploits in the wild.

The following proof of concept and exploit are available:

/data/vulnerabilities/exploits/27715_poc.html
/data/vulnerabilities/exploits/27715_exploit.html