Buffer overflow in eBay Enhanced Picture Services (aka EPUImageControl Class) in EUPWALcontrol.dll before 1.0.3.48, as used in Sell Your Item (SYI), Setup & Test eBay Enhanced Picture Services, Picture Manager Enhanced Uploader, and CARad.com Add Vehicle, allows remote attackers to execute arbitrary code via a crafted HTML document.
https://exchange.xforce.ibmcloud.com/vulnerabilities/27631
http://www.vupen.com/english/advisories/2006/2698
http://www.securityfocus.com/bid/18921
http://www.kb.cert.org/vuls/id/MIMG-6QKPVH
http://www.kb.cert.org/vuls/id/597721