15 matches found
Microsoft Office 2003 Embedded Shockwave Flash Object Security Bypass Weakness
No description provided by source. source: http://www.securityfocus.com/bid/18583/info Microsoft Office is prone to a weakness that may allow remote attackers to execute arbitrary script code contained in Shockwave Flash Objects without first requiring confirmation from users. A successful attack...
SapporoWorks Black JumboDog 2.6.4/2.6.5 HTTP Proxy Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3858/info Black JumboDog 2.6.4 and 2.6.5 HTTP proxy is vulnerable to an exploitable buffer overflow. The buffer overflow can be exploited by sending excessively long expires, if-modified-since, and LastModified strings...
Design/Logic Flaw
The Abstract Window Toolkit AWT implementation in Sun Java SE 6 before Update 15 on Windows 2000 Professional does not provide a Security Warning Icon, which makes it easier for context-dependent attackers to trick a user into interacting unsafely with an untrusted applet...
CVE-2009-2717
The Abstract Window Toolkit AWT implementation in Sun Java SE 6 before Update 15 on Windows 2000 Professional does not provide a Security Warning Icon, which makes it easier for context-dependent attackers to trick a user into interacting unsafely with an untrusted applet...
Microsoft Windows Pointer Validation Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. An attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers...
Microsoft Windows LSASS LPC Request Local Privilege Escalation Vulnerability
Description Microsoft Windows Local Security Authority Subsystem Service LSASS is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successfully exploiting this issue will facilitate in the complete...
Microsoft Windows CSRSS MSGBox远程代码执行漏洞
Microsoft Windows是一款商业性质的操作系统。 Microsoft Windows客户端/服务端实时子系统处理存在问题,远程攻击者可以利用漏洞以系统进程权限执行任意指令。 由于CSRSS服务处理错误消息存在问题,攻击者通过构建特殊的应用程序来触发此漏洞,可导致以系统进程权限执行任意指令。目前没有详细漏洞细节提供。 Microsoft Windows XP Tablet PC Edition SP2 Microsoft Windows XP Tablet PC Edition SP1 Microsoft Windows XP Tablet PC Edition Microso...
WFTPD Server SITE ADMIN命令远程拒绝服务漏洞
WFTPD Server是一款FTP服务程序。 WFTPD Server处理SITE ADMIN命令存在问题,远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 提交恶意字符串作为SITE ADMIN命令参数,可导致应用程序崩溃,造成拒绝服务攻击。 Texas Imperial Software WFTPD Pro 3.21 R2 Texas Imperial Software WFTPD Pro 3.21 R3 Texas Imperial Software WFTPD Pro 3.21 R1 Texas Imperial Software WFTPD Pro 3.21 Texas...
Microsoft Windows Help存在多个漏洞
Microsoft Help WINHLP32.EXE处理.hlp文件存在多个远程代码执行和拒绝服务问题。 攻击者可以在WEB页上防止恶意帮助文件,或者通过EMAIL附件形式发送,诱使用户打开来触发此漏洞,成功利用此漏洞可以以进程权限执行任意指令。 Microsoft Windows XP Tablet PC Edition SP2 Microsoft Windows XP Tablet PC Edition SP1 Microsoft Windows XP Tablet PC Edition Microsoft Windows XP Professional x64 Edition...
FutureSoft TFTP Server 2000 Transfer-Mode Overflow
This module exploits a stack buffer overflow in the FutureSoft TFTP Server 2000 product. By sending an overly long transfer-mode string, we were able to overwrite both the SEH and the saved EIP. A subsequent write-exception that will occur allows the transferring of execution to our shellcode via...
savant31.txt
Release Date: 09/22/2003 TITLE ===== Savant Web Server - Remote DoS DESCRIPTION =========== "Savant is a full-featured open source / freeware web server designed to be run under any 32-bit version of Microsoft Windows including Windows 95, 98, ME, XP, NT, and 2000. Savant was designed to be easy ...
HelpMe2.pl
Winhlp32.exe Remote BufferOverrun exploit code. written by Gary O'leary-Steele Sec-1 Ltd. [email protected] For use as proof of concept Ammended for use with kernel32.dll version 5.0.2195.2778 Kernell32 jmp ebx 77E87793 $sploit = "\x55\x8b\xec\x8b\xc3". Fixed from previous version...
Updated Information: Internet Printing ISAPI Buffer Overrun
-----BEGIN PGP SIGNED MESSAGE----- Hi All - Russ forwarded several queries to us regarding Microsoft Security Bulletin MS01-023 http://www.microsoft.com/technet/security/bulletin/MS01-023.asp. We've updated the bulletin, but I thought it might be helpful to pass the answers back to the broader...
ActiveSync can access a locked workstation w/o unlocking
Microsoft was notified on 3/28/2001, you may use my name when publishing this. I cannot register on your site, so I am trying the general e-mail addresses. Platforms tested: =================================================== Microsoft Windows 2000 Professional build 2195 w/ SP1 Microsoft...
CVE-2000-1111
Telnet Service for Windows 2000 Professional does not properly terminate incomplete connection attempts, which allows remote attackers to cause a denial of service by connecting to the server and not providing any input...