ICQLite executable trojaning

bugtraq@, Title: ICQ Lite executable trojaning Affected: ICQLite 2003a Vendor: ICQ Inc Vendor URL: http://www.icq.com Risk: Average Exploitable: Yes Remote: No Date: May, 29 2003 Advisory URL: http://www.security.nnov.ru/advisories/icqlite.asp I. Intro: ICQ Lite is popular internet messenger...

M-TECH P-Synch 6.2.5 - Full Path Disclosure

M-TECH P-Synch 6.2.5 - Full Path Disclosure source: https://www.securityfocus.com/bid/7740/info Reportedly an attacker may make a malicious HTTP request for specific P-Synch executables passing an empty URI parameter to trigger the condition. Although unconfirmed, it is likely that the request wi...

Restricted Zone: the OUTLOOK EXPRESS

Tuesday, 20 May, 2003 Silent delivery and installation of an executable on a target computer. No client input other than opening an email or newsgroup post. This can be achieved with the default setting of Outlook Express: RESTRICTED ZONE. Technically the following never worked, cannot work,...

sapdb installation privelege escalation

Race condition exists with workd-writable executable during installation process...

SILLY BEHAVIOR Part III : Internet Explorer 5.5 - 6.0

Sunday, May 4, 2003 Silent delivery and installation of an executable on the target machine, default install of win98 and Internet Explorer with all patches to date. No client input other than viewing a web page: Mildly amused by the recent patching of the codebase saga spanning nearly 3 years no...

CVE-2002-0718

CVE-2002-0718 affects Microsoft Content Management Server (MCMS) 2001. The vulnerability lies in the Web authoring function, allowing an attacker to authenticate and upload executable content by modifying the upload location (Program Execution via MCMS Authoring Function). Related data in the con...

CVE-2002-0718

Web authoring command in Microsoft Content Management Server MCMS 2001 allows attackers to authenticate and upload executable content, by modifying the upload location, aka "Program Execution via MCMS Authoring Function."...

SAP DB weak permissions

777 permissions are used for executables...

CVE-2002-1548

Unknown vulnerability in autofs on AIX 4.3.0, when using executable maps, allows attackers to execute arbitrary commands as root, possibly related to "string handling around how the executable map is called."...

DEBIAN-CVE-2003-0102

Buffer overflow in tryelf in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header elfhdr.eshentsize...

Clearswift MAILsweeper 4.x - MIME Attachment Filter Bypass

source: https://www.securityfocus.com/bid/7044/info Clearswift MailSweeper does not properly process certain malformed MIME email message attachments. If the attachment does not contain a MIME-Version field, MailSweeper does not recognize the attachment as being an executable type. MailSweeper...

Self-Executing HTML: Internet Explorer 5.5 and 6.0 Part II

Tuesday, February 25, 2003 We are delighted to learn that the original self-executing html file, from June 1 2002 is now fixed with the most current of the many patches for the Internet Explorer series of browsers. See: http://online.securityfocus.com/archive/1/275126 Regrettably. The following...

Microsoft Internet Explorer 56 - Self Executing HTML File

Microsoft Internet Explorer 56 - Self Executing HTML File source: https://www.securityfocus.com/bid/6961/info Microsoft Internet Explorer contains a vulnerability that can allow script code within an HTML document to run an embedded executable file. Since the file is an HTML file, Internet Explor...

Microsoft Internet Explorer 5/6 - Self Executing HTML File

source: https://www.securityfocus.com/bid/6961/info Microsoft Internet Explorer contains a vulnerability that can allow script code within an HTML document to run an embedded executable file. Since the file is an HTML file, Internet Explorer will open and parse the file. When the script that poin...

HPUX 10.20/11 Wall Message - Local Buffer Overflow

source: https://www.securityfocus.com/bid/6800/info It has been reported that the HPUX wall executable may be prone to a buffer overflow condition. This buffer overflow is alleged to be triggered when an excessive amount of data is redirected into wall as a message intended to be broadcast. It ma...

CVE-2002-2063

AtGuard 3.2 allows remote attackers to bypass firwall filters and execute prohibited programs by changing the filenames to permitted filenames...

PT-2002-2566 · Microsoft · Windows Media Player

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Media Player WMP version 6.3 Description: The issue allows local users to gain privileges by deleting or modifying executables due to world-writable permissions. Recommendations: For Microsoft Windows Media Player WMP versio...

CVE-2002-1349

Buffer overflow in pop3trap.exe for PC-cillin 2000, 2002, and 2003 allows local users to execute arbitrary code via a long input string to TCP port 110 POP3...

Norton antivirus privelege escalation

Можно запустить помощь winhlp32.exe в контексте локальной системы...

Program execution via AIM

If user clicks on link to local executable it will be launched...