1616 matches found
CVE-2008-6160
Semantically-Interconnected Online Communities SIOC 5.x before 5.x-1.2 and 6.x before 6.x-1.1, a module for Drupal, does not properly implement menu and database APIs, which allows remote attackers to obtain usernames and read hashed emails and comments via unspecified vectors...
CVE-2007-4828
Cross-site scripting XSS vulnerability in the API pretty-printing mode in MediaWiki 1.8.0 through 1.8.4, 1.9.0 through 1.9.3, 1.10.0 through 1.10.1, and the 1.11 development versions before 1.11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2007-2730
Check Point ZoneAlarm Pro before 6.5.737.000 does not properly test for equivalence of process identifiers for certain Microsoft Windows API functions in the NT kernel 5.0 and greater, which allows local users to call these functions, and bypass firewall rules or gain privileges, via a modified...
[NT] ShellAbout() API Elevation of Privilege (MS06-009)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
Win32 API 'shatter' vulnerability found in VNC-based products
Win32 API 'shatter' vulnerability found in VNC-based products CONFIRMED PROGRAMS: VNC v3.3.3R9 TightVNC v1.2.5 TridiaVNC 1.5.4 SUSPECTED PROGRAMS: TridiaVNC Pro All other VNC-based remote console products EXPLOIT TYPE: 'Shatter'-type win32-based local privilege escalation See:...
Microsoft Windows XP2000NT 4.0 - Window Message Subsystem Design Error (8)
Microsoft Windows XP2000NT 4.0 - Window Message Subsystem Design Error 8 source: https://www.securityfocus.com/bid/5408/info A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely...
Microsoft Windows XP2000NT 4.0 - Window Message Subsystem Design Error (6)
Microsoft Windows XP2000NT 4.0 - Window Message Subsystem Design Error 6 // source: https://www.securityfocus.com/bid/5408/info A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely...
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (5)
// source: https://www.securityfocus.com/bid/5408/info A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based application. Attackers with loca...
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (8)
source: https://www.securityfocus.com/bid/5408/info A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based application. Attackers with local...
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (6)
// source: https://www.securityfocus.com/bid/5408/info A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based application. Attackers with loca...
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (3)
// source: https://www.securityfocus.com/bid/5408/info A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based application. Attackers with loca...
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (1)
// source: https://www.securityfocus.com/bid/5408/info A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based application. Attackers with loca...
Дырка в API Windows NT 4.0 (GetFullPathName buffer overflow)
Переполнение буфера в GetFullPathName...
CVE-2022-32510
An issue was discovered on certain Nuki Home Solutions devices. The HTTP API exposed by a Bridge used an unencrypted channel to provide an administrative interface. A token can be easily eavesdropped by a malicious actor to impersonate a legitimate user and gain access to the full set of API...
Security Update for Windows Server 2003 (KB935839)
A security issue has been identified that could allow an attacker to compromise your Windows-based system using a Windows kernel API and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your...
Security Update for Windows XP (KB935839)
A security issue has been identified that could allow an attacker to compromise your Windows-based system using a Windows kernel API and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your...