Lucene search
K

216 matches found

Cvelist
Cvelist
added 2017/03/02 8:0 p.m.18 views

CVE-2017-5234

Rapid7 Insight Collector installers prior to version 1.0.16 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer...

7.6AI score0.00911EPSS
Exploits0References2
CVE
CVE
added 2017/03/02 8:0 p.m.44 views

CVE-2017-5234

CVE-2017-5234 affects Rapid7 Insight Collector installers prior to version 1.0.16, which ship with a DLL preloading vulnerability . An attacker could trick a user into placing a malicious DLL in the installer’s current working directory, enabling the DLL to be loaded during installation. Rapid7 n...

7.8CVSS7.5AI score0.00911EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/03/02 8:0 p.m.15 views

CVE-2017-5233

Rapid7 AppSpider Pro installers prior to version 6.14.053 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer...

7.6AI score0.00875EPSS
Exploits0References2
CVE
CVE
added 2017/03/02 8:0 p.m.49 views

CVE-2017-5235

Rapid7 Metasploit Pro installers prior to 4.13.0-2017022101 are affected by a DLL preloading vulnerability: the installer can load a malicious DLL from the current working directory. The issue is tied to how the installer searches for system DLLs, allowing an attacker with a malicious DLL in the ...

7.8CVSS7.5AI score0.00911EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/02/20 12:0 a.m.224 views

Snagit DLL Preloading Arbitrary Code Execution

The version of Snagit installed on the remote Windows host has a DLL preloading vulnerability. An attacker can execute arbitrary code by tricking a user into opening a Snagit file .snag, .snagprof, or .snagcc from an attacker-controlled location such as a network share. C Tenable Network Security...

9.3CVSS6.3AI score0.07835EPSS
Exploits1References3
Saint
Saint
added 2012/04/25 12:0 a.m.39 views

Microsoft Expression Design wintab32.dll Library Loading

Added: 04/25/2012 CVE: CVE-2012-0016 BID: 52375 OSVDB: 80001 Background Microsoft Expression Design is a commercial professional illustration vector and raster graphic design tool for web images. Problem Microsoft Expression Design contains a flaw in the way it loads dynamic-link libraries DLL. T...

9.3CVSS6.5AI score0.21892EPSS
Exploits5
ThreatPost
ThreatPost
added 2011/03/08 9:23 p.m.92 views

Microsoft Fills Windows, Office Holes with March Patch Release

Microsoft Corp. issued their monthly security bulletins on Tuesday, with fixes for four known vulnerabilities in the company’s Windows operating system, Office suite and Remote Desktop Connection products. The March patch release included three bulletins: MS11-015, 016 and 017. Only one, MS11-015...

9.3CVSS0.6AI score0.99945EPSS
Exploits33References7
The Hacker News
The Hacker News
added 2010/11/15 1:36 p.m.6 views

Microsoft security update stamps out 11 product vulnerabilities

Microsoft security update stamps out 11 product vulnerabilities American software heavyweight Microsoft Corp. has this week rolled out three security bulletins for Windows, addressing a total of 11 vulnerabilities targeting potential exploits in platforms ranging from Microsoft Office to Forefron...

7.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/11/09 12:0 a.m.483 views

MS10-087: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2423930)

The remote Windows host is running a version of Microsoft Office that is affected by several vulnerabilities : - An integer underflow exists in the way the application parses the PowerPoint file format, which could lead to heap corruption and allow for arbitrary code execution when opening a...

9.3CVSS8.7AI score0.89497EPSS
Exploits22References7
0day.today
0day.today
added 2010/09/26 12:0 a.m.32 views

Embarcadero Delphi XE (2011) DLL preloading exploit

Exploit for windows platform in category local exploits =================================================== Embarcadero Delphi XE 2011 DLL preloading exploit =================================================== Exploit Title : Embarcadero Delphi XE 2011, DLL preloading exploit Author : STRELiTZIA...

6.8AI score
Exploits0
0day.today
0day.today
added 2010/09/12 12:0 a.m.15 views

Prevx DLL preloading exploit

Exploit for windows platform in category local exploits ============================ Prevx DLL preloading exploit ============================ ============================ Prevx DLL preloading exploit ============================ ==================================================== = PREVX DLL...

6.8AI score
Exploits0
OpenVAS
OpenVAS
added 2010/09/03 12:0 a.m.12 views

Microsoft Windows Insecure Library Loading Remote Code Execution Vulnerabilities (2269637)

This host is prone to Remote Code Execution vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2010/09/03 12:0 a.m.10 views

MS Windows Insecure Library Loading Remote Code Execution Vulnerabilities (2269637)

This host is prone to Remote Code Execution vulnerabilities. OpenVAS Vulnerability Test $Id: gbmswindowslibrarycodeexecvuln.nasl 5934 2017-04-11 12:28:28Z antu123 $ MS Windows Insecure Library Loading Remote Code Execution Vulnerabilities 2269637 Authors: Antu Sanadi Copyright: Copyright c 2010...

0.8AI score
Exploits0References3
Packet Storm
Packet Storm
added 2010/08/30 12:0 a.m.22 views

Virtual DJ 6.1.2 DLL Hijacking Exploit

/ Description: Virtual DJ 6.1.2 Also vulnerable for DLL Preloading on hdjapi.dll while loading .mp3 content. Date: August 29, 2010 Author: Classity informatiebeveiliging PoC: Displaying message box, but can be replaced by DLL with arbitrary payload. / include define DllExport declspec dllexport...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2010/08/29 12:0 a.m.65 views

Microsoft Security Advisory (2269637) Insecure Library Loading Could Allow Remote Code Execution

Microsoft Security Advisory 2269637 Insecure Library Loading Could Allow Remote Code Execution Published: August 23, 2010 Version: 1.0 General Information Executive Summary Microsoft is aware that research has been published detailing a remote attack vector for a class of vulnerabilities that...

0.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/08/26 12:0 a.m.3381 views

MS KB2269637: Insecure Library Loading Could Allow Remote Code Execution

The remote host is missing Microsoft KB2264107 or an associated registry change, which provides a mechanism for mitigating binary planting or DLL preloading attacks. Insecurely implemented applications look in their current working directory when resolving DLL dependencies. If a malicious DLL wit...

5.8AI score
Exploits0References2
Rows per page
Query Builder