RSA SecurID Software Token < 4.1.1 Insecure Library Loading

The remote Windows host contains a version of RSA SecurID Software Token 3.0, 4.0, or 4.1 earlier than 4.1.1. As such, it is reportedly affected by an insecure library loading vulnerability. If an attacker can trick a user on the affected system into opening a specially crafted Software Token fil...

ESA-2011-039: RSA&#40;r&#41;, The Security Division of EMC, announces security fixes and improvements for RSASecurID&#40;r&#41; Software Token 4.1 for Microsoft&#40;r&#41;Windows&#40;r&#41;

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2011-039: RSA®, The Security Division of EMC, announces security fixes and improvements for RSASecurID® Software Token 4.1 for Microsoft®Windows® Advisories Updated December 12, 2011 Summary: RSA, The Security Division of EMC, announces security...

Design/Logic Flaw

Untrusted search path vulnerability in Microsoft PowerPoint 2007 SP2 and 2010 allows local users to gain privileges via a Trojan horse DLL in the current working directory, aka "PowerPoint Insecure Library Loading Vulnerability."...

Design/Logic Flaw

Untrusted search path vulnerability in Microsoft Internet Explorer 9 on Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains an HTML file, aka...

Microsoft PowerPoint Insecure Library Loading (MS11-094; CVE-2011-3396)

A remote code execution vulnerability has been reported in Microsoft PowerPoint. The vulnerability is due to an error in the way Microsoft PowerPoint restricts the path used for loading external libraries. A remote attacker could exploit this vulnerability by enticing a user to open a legitimate...

Internet Explorer Insecure Library Loading Code Execution (MS11-089; CVE-2011-2019)

A remote code execution vulnerability has been reported in Internet Explorer IE. The vulnerability is due to an error in the way IE restricts the path used for loading external libraries. A remote attacker could exploit this vulnerability by enticing a user to open a legitimate HTML file that is...

Windows Mail/Meeting Space不安全库加载漏洞(MS11-085)

CVE ID: CVE-2011-2016 Microsoft Windows是流行的计算机操作系统。 Microsoft Windows在实现上存在安全漏洞，可被恶意用户利用控制受影响系统。 此漏洞源于Windows Mail和Windows Meeting Space以不安全方式加载某些库，通过诱使用户打开远程WebDAV或SMB共享上的EML或WCLNV文件加载任意库。 0 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows 7 厂商补丁： Microsoft ---------...

IBM Db2 'DT_RPATH' Insecure Library Loading Code Execution Vulnerabilities

IBM Db2 is prone to insecure library loading vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2";...

IBM DB2 'DT_RPATH' Insecure Library Loading Code Execution Vulnerabilities

The host is running IBM DB2 and is prone to insecure library loading vulnerabilities. OpenVAS Vulnerability Test $Id: secpodibmdb2dtrpathinsecurelibloadvuln.nasl 7024 2017-08-30 11:51:43Z teissa $ IBM DB2 'DTRPATH' Insecure Library Loading Code Execution Vulnerabilities Authors: Antu Sanadi...

Design/Logic Flaw

Untrusted search path vulnerability in Windows Media Center in Microsoft Windows Vista SP2 and Windows 7 Gold and SP1, and Windows Media Center TV Pack for Windows Vista, allows local users to gain privileges via a Trojan horse DLL in the current working directory, aka "Media Center Insecure...

Design/Logic Flaw

Untrusted search path vulnerability in the Microsoft Active Accessibility component in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a Trojan horse DLL in...

CVE-2011-2009

CVE-2011-2009 describes an Untrusted search path vulnerability in Windows Media Center that allows local users to gain privileges via a Trojan horse DLL loaded from the current working directory. Affected products: Windows Vista SP2, Windows 7 (Gold and SP1), and Windows Media Center TV Pack for ...

Security fix for the ALT Linux 5 package tuxguitar version 1.2-alt2

Oct. 11, 2011 Vitaly Lipatov 1.2-alt2 - fix CVE-2010-3385: insecure library loading ALT bug 24333...

Security fix for the ALT Linux 6 package tuxguitar version 1.2-alt2

Oct. 11, 2011 Vitaly Lipatov 1.2-alt2 - fix CVE-2010-3385: insecure library loading ALT bug 24333...

Wireshark multiple security vulnerabilities

DoS on different protocols dissectors, unsafe dynamic library loading...

Mozilla Firefox and Thunderbird sensor.dll Insecure Library Loading (CVE-2011-2980)

A remote code execution vulnerability has been reported in Mozilla Firefox and Thunderbird. The vulnerability is due to insecure library loading while opening specially crafted HTML files. A remote attacker may trigger this vulnerability by enticing a target user to open a malicious HTML file fro...

eSignal Multiple Vulnerabilities

This host is installed with eSignal and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbesignalmultvuln.nasl 7019 2017-08-29 11:51:27Z teissa $ eSignal Multiple Vulnerabilities Authors: Sooraj KS Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net...

eSignal Multiple Vulnerabilities

eSignal is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2011-1980

Untrusted search path vulnerability in Microsoft Office 2003 SP3 and 2007 SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .doc, .ppt, or .xls file, aka "Office Component Insecure Library Loading...

Input validation

Multiple untrusted search path vulnerabilities in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allow local users to gain privileges via a Trojan horse DLL in the current working directory, as...