CVE-2010-3148

Untrusted search path vulnerability in Microsoft Visio 2003 SP3 allows local users to gain privileges via a Trojan horse mfc71enu.dll file in the current working directory, as demonstrated by a directory that contains a .vsd, .vdx, .vst, or .vtx file, aka "Microsoft Visio Insecure Library Loading...

Design/Logic Flaw

Untrusted search path vulnerability in Microsoft Visio 2003 SP3 allows local users to gain privileges via a Trojan horse mfc71enu.dll file in the current working directory, as demonstrated by a directory that contains a .vsd, .vdx, .vst, or .vtx file, aka "Microsoft Visio Insecure Library Loading...

CVE-2010-3147

CVE-2010-3147 describes an untrusted search path vulnerability in Windows Address Book (wab.exe) where a Trojan horse wab32res.dll loaded from the current working directory can execute code. Affected: WAB/Windows Contacts components on Windows XP SP2/XP SP3, Server 2003 SP2, Vista SP1/SP2, Server...

CVE-2010-3145

CVE-2010-3145 concerns the Windows Backup Manager insecure DLL loading in sdclt.exe (Backup Manager) on Windows Vista SP1/SP2. The vulnerability arises from untrusted search path loading a Trojan horse fveapi.dll located in the current working directory, triggered when opening a Windows Backup Ca...

CVE-2010-3144

CVE-2010-3144 concerns an insecure library loading vulnerability in the Internet Connection Signup Wizard (ICSW) affecting Windows XP SP2/SP3 and Windows Server 2003 SP2. The root cause is untrusted search path handling that allows loading a Trojan horse DLL (smmscrpt.dll) from the current direct...

CVE-2010-3146

CVE-2010-3146 corresponds to the Microsoft Groove 2007 insecure library loading vulnerability. Multiple OpenVAS/SecPod/SAINT entries confirm that Groove 2007 (SP2) loads untrusted libraries from the current working directory when opening .vcg or .gta files, specifically mso.dll or GroovePerfmon.d...

MS KB2269637: Insecure Library Loading Could Allow Remote Code Execution

The remote host is missing Microsoft KB2264107 or an associated registry change, which provides a mechanism for mitigating binary planting or DLL preloading attacks. Insecurely implemented applications look in their current working directory when resolving DLL dependencies. If a malicious DLL wit...

acroread: multiple code execution flaws (APSB10-02)

The 3D implementation in Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, might allow attackers to execute arbitrary code via unspecified vectors, related to a "DLL-loading vulnerability."...

No title provided

The core server component in PostgreSQL 8.4 before 8.4.1, 8.3 before 8.3.8, and 8.2 before 8.2.14 allows remote authenticated users to cause a denial of service backend shutdown by "re-LOAD-ing" libraries from a certain plugins directory...

Windows print spooler multiple security vulnerabilities

Buffer overflow, unauthorized files access, privilege escalation with dynamic library loading...

FreeBSD : cyrus-sasl -- dynamic library loading and set-user-ID applications (92268205-1947-11d9-bc4a-000c41e2cdad)

The Cyrus SASL library, libsasl, contains functions which may load dynamic libraries. These libraries may be loaded from the path specified by the environmental variable SASLPATH, which in some situations may be fully controlled by a local attacker. Thus, if a set-user-ID application such as chsh...

Ingres database server multiple security vulnerabilities

Weak file permissions, insecure shared library loading, buffer overflow in different utilities...

iDefense Security Advisory 06.04.08: VMware Multiple Products vmware-authd Untrusted Library Loading Vulnerability

iDefense Security Advisory 06.04.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 04, 2008 I. BACKGROUND VMware Inc. markets several virtualization products which allow multiple virtual computers to run on a single system. For more information visit the following URL...

iDefense Security Advisory 03.31.08: Macrovision InstallShield InstallScript One-Click Install Untrusted Library Loading Vulnerability

iDefense Security Advisory 03.31.08 http://labs.idefense.com/intelligence/vulnerabilities/ Mar 31, 2008 I. BACKGROUND Macrovision InstallShield InstallScript One-Click Install OCI is a web based installer technology that allows software publishers to distribute minimal installer packages which...

Adobe Acrobat / Reader multiple security vulnerabilities

Multiple buffer overflows and integer overflows, unsafe methods, unsafe dynamic library loading...

IBM DB2 database server multiple security vulnerabilities

TCP/523 remote administration service memory corruption. Dynamic livrary loading by relative path...

iDefense Security Advisory 02.07.08: IBM DB2 Universal Database db2pd Arbitrary Library Loading Vulnerability

iDefense Security Advisory 02.07.08 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 07, 2008 I. BACKGROUND IBM Corp.'s DB2 Universal Database product is a large database server product commonly used for high end databases. For more information, visit the following URL...

Adobe Reader < 7.1.0 / 8.1.2 Multiple Vulnerabilities

The version of Adobe Reader installed on the remote host is earlier than 8.1.2 or 7.1.0. Such versions are reportedly affected by multiple vulnerabilities : - A design error vulnerability may allow an attacker to gain control of a user's printer. - Multiple stack-based buffer overflows may allow ...

IBM DB2 database multiple security vulnerabilities

Directory traversal, buffer overflow, shared libraries loaded from insecure locations, files and directories manipulation...

IBM AIX &lt;= 5.3 sp6 pioout Arbitrary Library Loading Local Root Exploit

No description provided by source. !/bin/sh 07/2007: public release echo "-------------------------------" echo " AIX pioout Local Root Exploit " echo " By qaaz" echo "-------------------------------" cat piolib.c EOF include stdlib.h include unistd.h void init attribute constructor; void init...