Symantec AppStream Client LaunchObj ActiveX Control (CVE-2008-4388)

The AppStream Client is part of a Software Virtualization Solution SVS which allows streaming of virtual applications to users in an enterprise environment using the AppStream Server. It provides centralized delivery and licensing mechanism which allows controlled access to any Windows Applicatio...

Digital Upload 1.0 Shell Upload

======================================================================================== | Title : Digital College 1.0 upload Vulnerability | Author : indoushka | email : [email protected] | Dork : Powered by Digital College 1.0 - Magtrb Soft 2010 | Tested on: windows SP2 Français V.Pnx2 2.0 ...

Sun Java Runtime Environment Type1 Font Parsing Integer Overflow (CVE-2009-1099)

Java Technology is a programing platform developed by Sun Microsystems which aims to provide a system for developing and deploying cross-platform applications. Java is used in a wide variety programs that are deployed on personal computers as well as embedded devices and cell phones. Java...

IBM Installation Manager iim URI Handling Code Execution

IBM Installation Manager IIM is a software tool that helps to install, update, modify, and install packages. It helps to manage IBM applications or packages by providing tools to keep packages up to date, modify the packages, manage the licenses for those packages, and uninstall the packages from...

QtWeb 3.0 - Remote Crash (Denial of Service)

QtWeb 3.0 - Remote Crash Denial of Service !/usr/bin/perl File Name :QtWeb Web Browser Vuln : Remote Dos/Crash Auther : Zer0 Thunder Msn : [email protected] Look at the task manager after u run this ==------ Exploit Title: QtWeb 3.0 Remote DoS/Crash Exploit Date: 22/01/2010 Author:...

Preemptive Protection against Microsoft Internet Explorer Uninitialized Memory Corruption Vulnerabilities (MS10-002)

Multiple memory corruption vulnerabilities have been reported in Microsoft Internet Explorer. A remote attacker could exploit these issues by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which will cause the browser to crash and may allow execution of arbitrar...

MW6 Technologies Barcode.dll ActiveX Control Buffer Overflow (CVE-2009-0298)

MW6 Technologies is a provider of barcode software. As part of its software MW6 Technologies includes various ActiveX controls that are used to process the barcode data. One of these ActiveX controls is barcode.dll. There exists a heap-based buffer overflow vulnerability in MW6 Technologies...

Update Protection against Microsoft Internet Explorer Request Header Information Disclosure Vulnerability (MS08-031)

An information disclosure vulnerability has been reported in the way that Internet Explorer handles certain request headers. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which may allow the attacker to view data fr...

IBM Access Support ActiveX GetXMLValue Method Buffer Overflow (CVE-2009-0215)

IBM Access Support is part of a suite of several tools used by IBM to provide support to its customers having IBM/Lenovo Laptops and Desktop systems. This product is used by the vendor to remotely examine the product and collect information in order to address any problems or distribute updates. ...

Preemptive Protection against Microsoft Internet Explorer HTML Object Memory Corruption Vulnerability

A memory corruption vulnerability has been reported in Microsoft Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which will cause the browser to crash and may allow execution of arbitrary commands...

Hacking knowledge: how to hide PHP file Backdoor tricks-vulnerability warning-the black bar safety net

Recently many friends are asking if I can put my word Trojan is hidden to the HTML or pictures, in fact the word Trojan is inserted into the PHP file will already be concealed, and if said literally to be placed into the HTML file or picture, then read this article test report. You want to know i...

Microsoft Internet Explorer CSS Behavior Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists when accessing embedded style sheets...

CVE-2009-1352

Stack-based buffer overflow in Dawningsoft PowerCHM 5.7 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via an HTML file with a link to a long URL, as demonstrated by a .rar URL...

Stack overflow

Stack-based buffer overflow in Dawningsoft PowerCHM 5.7 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via an HTML file with a link to a long URL, as demonstrated by a .rar URL...

CVE-2009-1352

Stack-based buffer overflow in Dawningsoft PowerCHM 5.7 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via an HTML file with a link to a long URL, as demonstrated by a .rar URL...

QtWeb Browser 2.0 - '.HTML' File Remote Denial of Service

source: https://www.securityfocus.com/bid/34327/info QtWeb browser is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to crash the affected application, denying service to legitimate users. QtWeb 2.0 is vulnerable; other versions may also be affected...

POP Peeper 3.4.0.0 .html file Universal SEH Overwrite Exploit

No description provided by source. POP Peeper 3.4.0.0 .html file Universal SEH Overwrite Exploit Exploit By Stack Mountassif Moad How to use : file Open message or Ctrl + O Select The .html file ...... Connect With 5555 Port C:\ncnc -v 127.0.0.1 5555 DNS fwd/rev mismatch: localhost !=...

BitDefender Internet Security 2009 XSS Vulnerability

BitDefender Internet Security is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...

Update Protection against Symantec AppStream Client LaunchObj ActiveX Control Program Execution

A remote code execution vulnerability was reported in Symantec AppStream Client. The AppStream Client is part of a Software Virtualization Solution SVS which allows streaming of virtual applications to users in an enterprise environment using the AppStream Server. The vulnerability is due to...

SA-CONTRIB-2009-001 - Project release - Multiple vulnerabilities

Exploitable from: Remote Vulnerabilities: Arbitrary file upload, Cross-site scripting XSS The Project release module is a component within the broader Project module. This announcement covers the following two issues: 1. Project release enables file attachments to create a specific version of cod...