eBay Enhanced Picture Uploader ActiveX control (EPUWALcontrol.dll) before 1.0.27 allows remote attackers to execute arbitrary commands via the PictureUrls property.Referenceshttp://osvdb.org/54968http://secunia.com/advisories/35412http://pages.ebay.com/securitycenter/activex/index.htmlhttp://www.securityfocus.com/bid/35248http://www.kb.cert.org/vuls/id/983731
