Microsoft Visual Studio 'MSCOMM32.OCX' ActiveX Control Heap Buffer Overflow Vulnerability

Description Microsoft Visual Studio is prone to a remote heap-based buffer-overflow vulnerability. Attackers may exploit this issue by enticing an unsuspecting victim to view a malicious webpage. Successful exploits will allow attackers to execute arbitrary code within the context of the affected...

Fedora Core 9 FEDORA-2009-0578 (boinc-client)

The remote host is missing an update to boinc-client announced via advisory FEDORA-2009-0578. OpenVAS Vulnerability Test $Id: fcore20090578.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-0578 boinc-client Authors: Thomas Reinke Copyright: Copyright...

Buffer overflow

Multiple buffer overflows in Client Software WinCom LPD Total 3.0.2.623 and earlier allow remote attackers to execute arbitrary code via 1 a long 0x02 command to the remote administration service on TCP port 13500 or 2 a long invalid control filename to LPDService.exe on TCP port 515...

CVE-2008-5158

Client Software WinCom LPD Total 3.0.2.623 and earlier allows remote attackers to bypass authentication and perform administrative actions via vectors involving "simply skipping the auth stage."...

Integer overflow

Integer overflow in the remote administration protocol processing in Client Software WinCom LPD Total 3.0.2.623 and earlier allows remote attackers to cause a denial of service crash via a large string length argument, which triggers memory corruption...

CVE-2008-5158

Client Software WinCom LPD Total 3.0.2.623 and earlier allows remote attackers to bypass authentication and perform administrative actions via vectors involving "simply skipping the auth stage."...

Design/Logic Flaw

Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly change the source URI when processing a canvas element and an HTTP redirect, which allows remote attackers to bypass the same origin policy and access arbitrary images that are no...

CVE-2008-5012

Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly change the source URI when processing a canvas element and an HTTP redirect, which allows remote attackers to bypass the same origin policy and access arbitrary images that are no...

Akamai Technologies Security Advisory 2008-0003 (Akamai Client Software)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------- Akamai Technologies Security Advisory 2008-0003 Akamai ID: 2008-0003 Date: 2008/06/06 Product Name: Akamai Client Software formerly Red Swoosh Affected Versions: Up to and including 3322 Fixed...

ldm / ltsp X session hijack

It's possible to connect to X server of any LTSP client...

RealPlayer ierpplug.dll ActiveX Control Import Playlist Name Stack Buffer Overflow Vulnerability

Description RealPlayer is prone to a stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks of user-supplied input before copying it to an insufficiently sized memory buffer. Attackers can exploit this issue to execute arbitrary code in the context of the...

Novell Client 4.91 SP4 nwspool.dll buffer overflow

Added: 08/10/2007 CVE: CVE-2007-6701 BID: 25092 OSVDB: 37319 Background Novell Client software provides NetWare connectivity to Windows platforms. Problem The nwspool.dll library in Novell Client is affected by buffer overflow vulnerabilities in several different functions, allowing remote...

3APA3A : Frontend applications security

May 30, 2002| Client software security. 1. Introduction. Usually, when talking about attacks via the Internet and related risks, they mean the security of the mail server, the Web Server and other corporate Internet services. To ensure corporate security Internet services are usually placed in a...

AOL CDDBControl ActiveX控件缓冲区溢出漏洞

AOL是一款流行的即时通信软件。 AOL Client Software处理"CDDBControlAOL.CDDBAOLControl" ActiveX控件存在问题，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 当"CDDBControlAOL.CDDBAOLControl" ActiveX控件cddbcontrol.dll处理传递个"SetClientInfo"函数方法的"ClientId"参数时缺少正确的边界错误，提交超长字符串可发生基于堆栈的缓冲区溢出，精心构建参数数据可导致以应用程序进程权限执行任意指令。 AOL Client Software 9.0 Securit...

Novell Distributed Print Services (NDPS) Print Provider (NDPPNT.DLL) Remote Overflow

The file 'ndppnt.dll' included with the Novell Client software reportedly contains an unspecified buffer overflow. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid23769; scriptversion"1.17"; scriptcvsdate"Date: 2018/07/16 14:09:15"; scriptcveid"CVE-2006-6443";...

Microsoft Internet Explorer Invalid HTML Parsing Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a vulnerability that may permit remote attackers to execute arbitrary code. This vulnerability occurs when the browser parses invalid HTML. Attackers can exploit this vulnerability through a malicious web page or HTML email. Technologies Affecte...

CVE-2006-0526

The default configuration of the America Online AOL client software allows all users to modify a certain registry value that specifies a DLL file name, which might allow local users to gain privileges via a Trojan horse program...

CVE-2006-0526

CVE-2006-0526 affects the AOL client: the default configuration lets any user modify a registry value that specifies a DLL file name, enabling local privilege escalation via a Trojan horse. The available documents confirm the affected product and the root cause, but do not provide exploit details...

CVE-2006-0526

The default configuration of the America Online AOL client software allows all users to modify a certain registry value that specifies a DLL file name, which might allow local users to gain privileges via a Trojan horse program...

CVE-2005-2597

CVE-2005-2597 concerns AOL Client Software 9.0, where insecure permissions on the installation path allow a local user to replace ACSD.exe with a malicious program, enabling arbitrary code execution with SYSTEM privileges. The vulnerability is local in scope and hinges on insufficient protection ...