168 matches found
CVE-2010-3147
CVE-2010-3147 describes an untrusted search path vulnerability in Windows Address Book (wab.exe) where a Trojan horse wab32res.dll loaded from the current working directory can execute code. Affected: WAB/Windows Contacts components on Windows XP SP2/XP SP3, Server 2003 SP2, Vista SP1/SP2, Server...
Simple Machines Forum 2.0 RC3 Cross Site Request Forgery
Exploit Title: Simple Machines Forum = 2.0 RC3 Sesc theft XSRF Date: 09-06-2010 Author: Xianur0 Software Link: http://download.simplemachines.org/ Version: =2.0 RC3 Tested on: 1.1.11 & 2.0 RC3 Vale, este "bug" es simple, y a decir verdad me parese bastante estupido, pero bueno... xD... El SMF en...
Code injection
The 3D implementation in Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, might allow attackers to execute arbitrary code via unspecified vectors, related to a "DLL-loading vulnerability."...
CVE-2009-3954
The 3D implementation in Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, might allow attackers to execute arbitrary code via unspecified vectors, related to a "DLL-loading vulnerability."...
CVE-2009-3954
CVE-2009-3954 refers to a DLL-loading vulnerability in the 3D implementation of Adobe Reader/Acrobat. Affected products span Adobe Reader/Acrobat 9.x prior to 9.3 and 8.x prior to 8.2 on Windows and macOS. The root cause is a DLL-loading issue in the 3D component that could allow arbitrary code e...
acroread: multiple code execution flaws (APSB10-02)
The 3D implementation in Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, might allow attackers to execute arbitrary code via unspecified vectors, related to a "DLL-loading vulnerability."...
18ZLZA.txt
Summary: 18 ways to escalate privileges in Zone Labs ZoneAlarm Security Suite build 6.1.744.000 http://www.zonelabs.com/ Details: During Windows startup the TrueVector service vsmon.exe - an integral piece of most Zone Labs products is set to startup automatically. The TrueVector service runs und...
[VulnWatch] Mysql CREATE FUNCTION mysql.func table arbitrary library injection
Mysql CREATE FUNCTION mysql.func table arbitrary library injection Author: Stefano Di Paola Vulnerable: Mysql = 4.0.23, 4.1.10 Type of Vulnerability: Local/Remote Privileges Escalation - input validation Tested On : Mandrake 10.1 /Debian Sarge Vendor Status: Notified on March 2005 -- Description...