CVE-2011-2009

CVE-2011-2009 describes an Untrusted search path vulnerability in Windows Media Center that allows local users to gain privileges via a Trojan horse DLL loaded from the current working directory. Affected products: Windows Vista SP2, Windows 7 (Gold and SP1), and Windows Media Center TV Pack for ...

Security fix for the ALT Linux 5 package tuxguitar version 1.2-alt2

Oct. 11, 2011 Vitaly Lipatov 1.2-alt2 - fix CVE-2010-3385: insecure library loading ALT bug 24333...

Security fix for the ALT Linux 6 package tuxguitar version 1.2-alt2

Oct. 11, 2011 Vitaly Lipatov 1.2-alt2 - fix CVE-2010-3385: insecure library loading ALT bug 24333...

Mozilla Firefox and Thunderbird sensor.dll Insecure Library Loading (CVE-2011-2980)

A remote code execution vulnerability has been reported in Mozilla Firefox and Thunderbird. The vulnerability is due to insecure library loading while opening specially crafted HTML files. A remote attacker may trigger this vulnerability by enticing a target user to open a malicious HTML file fro...

eSignal Multiple Vulnerabilities

This host is installed with eSignal and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbesignalmultvuln.nasl 7019 2017-08-29 11:51:27Z teissa $ eSignal Multiple Vulnerabilities Authors: Sooraj KS Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net...

eSignal Multiple Vulnerabilities

eSignal is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2011-1980

Untrusted search path vulnerability in Microsoft Office 2003 SP3 and 2007 SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .doc, .ppt, or .xls file, aka "Office Component Insecure Library Loading...

Input validation

Multiple untrusted search path vulnerabilities in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allow local users to gain privileges via a Trojan horse DLL in the current working directory, as...

Design/Logic Flaw

Untrusted search path vulnerability in Microsoft Office 2003 SP3 and 2007 SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .doc, .ppt, or .xls file, aka "Office Component Insecure Library Loading...

CVE-2011-1980

CVE-2011-1980 affects Microsoft Office 2003 SP3 and Office 2007 SP2, with an Untrusted Search Path vulnerability that allows local privilege escalation via loading a Trojan horse DLL from the current working directory when a .doc/.xls/.ppt file is present. The root cause is insecure library loadi...

CVE-2011-1980

Untrusted search path vulnerability in Microsoft Office 2003 SP3 and 2007 SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .doc, .ppt, or .xls file, aka "Office Component Insecure Library Loading...

Firefox sensor.dll Insecure Library Loading

Added: 09/13/2011 CVE: CVE-2011-2980 BID: 49217 OSVDB: 74583 Background Firefox is a freely available web browser for multiple platforms including Windows, Linux, and Mac OS. Problem A library loading vulnerability in Mozilla Firefox and Thunderbird allows arbitrary command execution when a user...

Microsoft PowerPoint .dll Insecure Library Loading (MS11-073; CVE-2011-1980)

The vulnerability is due to insecure library loading issue in Microsoft PowerPoint. A remote attacker could trigger this flaw by convincing a victim to open a specially crafted PowerPoint file. Successful exploitation of this issue may allow execution of arbitrary code on a vulnerable system...

Microsoft Windows Insecure Library Loading Vulnerability (2269637)

This host is missing a critical security update according to Microsoft Security Advisory 2269637. This VT has been deprecated and replaced by the VT with the OID: 1.3.6.1.4.1.25623.1.0.902792. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced...

CVE-2011-1975

Untrusted search path vulnerability in the Data Access Tracing component in Windows Data Access Components Windows DAC 6.0 in Microsoft Windows 7 Gold and SP1 and Windows Server 2008 R2 and R2 SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as...

Design/Logic Flaw

Untrusted search path vulnerability in the Data Access Tracing component in Windows Data Access Components Windows DAC 6.0 in Microsoft Windows 7 Gold and SP1 and Windows Server 2008 R2 and R2 SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as...

CVE-2011-1975

Untrusted search path vulnerability in the Data Access Tracing component in Windows Data Access Components Windows DAC 6.0 in Microsoft Windows 7 Gold and SP1 and Windows Server 2008 R2 and R2 SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as...

Foxit Reader ActiveX Control Buffer Overflow and Insecure Library Loading Vulnerabilities

Two vulnerabilities have been discovered in Foxit Reader, which can be exploited by malicious people to compromise a user's system. 1 A boundary error in the FoxitReaderOCX ActiveX control when processing the "OpenFile" method can be exploited to cause a heap-based buffer overflow via an overly...

Foxit Reader Insecure Library Loading

Vulnerability title: Foxit Reader Insecure Library Loading CVSS Risk Rating: 2.9 Low Product: Foxit Reader Application Vendor: Foxit Vendor URL: http://www.foxitsoftware.com Public disclosure date: 7/21/2011 Discovered by: Jose Hernandez and Solutionary Engineering Research Team SERT Solutionary...

rgmanager: insecure library loading vulnerability

The 1 SAPDatabase and 2 SAPInstance scripts in OCF Resource Agents aka resource-agents or cluster-agents 1.0.3 in Linux-HA place a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...