SOL7521 - Stack-based buffer overflow vulnerability in web browser plug-in

In order for this exploit to be successful, the attacker must persuade you to view the malicious web page. If you view the malicious web page in a browser that has affected FirePass plug-in installed, this could result in malicious code execution on the client side, disclosure of sensitive...

CVE-2005-4845

CVE-2005-4845 concerns the Java Plug-in versions 1.4.2_03 and 1.4.2_04, including the associated applet redirector controls. The issue is that creating a COM object linked to the control’s CLSID (not intended for use within Internet Explorer) can crash Internet Explorer, resulting in a denial of ...

CVE-2005-4845

The Java Plug-in 1.4.203 and 1.4.204 controls, and the 1.4.203 and 1.4.204 redirector controls, allow remote attackers to cause a denial of service Internet Explorer crash by creating a COM object of the class associated with the control's CLSID, which is not intended for use within Internet...

PJBLOG photo album plug-in there is a serious vulnerability-a vulnerability warning-the black bar safety net

Continue the Halo one! The want to get hold of a PJ album plug-in to play, did not expect to pass up, vulnerability is I found. The following I listed in the vulnerability details. -------------------------------------------------- Software name: PJBLOG album plug-in V2. 0 Wizard full version...

ACDSee XPM file handling buffer overflow

Added: 05/10/2007 CVE: CVE-2007-2193 BID: 23620 OSVDB: 35236 Background ACDSee is a suite of products for viewing and organizing photos. Problem A buffer overflow vulnerability in the IDX.apl plug-in allows command execution when a user opens a specially crafted XPM file. Resolution Apply a fix...

Adobe Reader plug-in AcroPDF.dll 8.0.0.0 Resource Consumption

Exploit for unknown platform in category dos / poc ============================================================= Adobe Reader plug-in AcroPDF.dll 8.0.0.0 Resource Consumption =============================================================...

Adobe Reader Plugin AcroPDF.dll 8.0.0.0 - Resource Consumption

Adobe Reader Plugin AcroPDF.dll 8.0.0.0 - Resource Consumption !-------------------------------------------------------------------------------- Adobe PDF Reader plug-in AcroPDF.dll ver. 8.0.0.0 Resource Consumption author: shinnai mail: shinnaiatautisticidotorg site:...

Adobe Reader Plugin 'AcroPDF.dll' 8.0.0.0 - Resource Consumption

!-------------------------------------------------------------------------------- Adobe PDF Reader plug-in AcroPDF.dll ver. 8.0.0.0 Resource Consumption author: shinnai mail: shinnaiatautisticidotorg site: http://www.shinnai.altervista.org Well, Adobe guys do a good job after the publication of a...

Apple QuickTime QTIF heap buffer overflow

Overview Apple QuickTime is vulnerable to a heap buffer overflow which may allow an attacker to execute arbitrary code or crash the system. Description A vulnerability exists in the way Apple QuickTime handles specially crafted QuickTime Image QTIF files. According to Apple QuickTime 7.1.5 securi...

Buffer overflow

Multiple buffer overflows in a an ActiveX control iftw.dll and b Netscape plug-in npiftw32.dll for Macrovision formerly InstallShield InstallFromTheWeb allow remote attackers to execute arbitrary code via crafted HTML documents...

CVE-2007-0320

Multiple buffer overflows in a an ActiveX control iftw.dll and b Netscape plug-in npiftw32.dll for Macrovision formerly InstallShield InstallFromTheWeb allow remote attackers to execute arbitrary code via crafted HTML documents...

CVE-2007-0320

CVE-2007-0320 involves Macrovision’s InstallFromTheWeb product (ActiveX control in iftw.dll and Netscape plug-in in npiftw32.dll). The connected sources document multiple buffer overflows in these components that could allow an attacker to execute arbitrary code via crafted HTML documents, potent...

Macrovision / InstallShield InstallFromTheWeb buffer overflows

Overview Macrovision / InstallShield InstallFromTheWeb contains multiple buffer overflows, which could allow an attacker to execute arbitrary code on a vulnerable system. Description InstallShield InstallFromTheWeb is a web-based software installation product for Microsoft Windows systems...

DjVu Browser Plug-in < 6.1.1 Multiple Buffer Overflows

The DjVu Browser Plug-in is installed on the remote Windows host. This plugin provides the primary means of viewing DjVu documents, which are used for publishing scanned books, catalogs, historical documents, research papers, manuals, etc. The version of the DjVu Browser Plug-in installed on the...

EasyMail Objects IMAP4 Component Connect Method Remote Overflow

EasyMail Objects, a set of COM objects for supporting email protocols, is installed on the remote Windows host. The IMAP4 component of the version of the DjVu Browser Plug-in installed on the remote host reportedly is affected by a stack buffer overflow in the 'Connect' method that can be trigger...

Buffer overflow

Multiple buffer overflows in the LizardTech DjVu Browser Plug-in before 6.1.1 allow remote attackers to execute arbitrary code via unspecified vectors...

CVE-2007-0324

CVE-2007-0324 involves multiple buffer-overflow vulnerabilities in the LizardTech DjVu Browser Plug-in prior to version 6.1.1, allowing remote attackers to execute arbitrary code. The issue affects the DjVu Browser Plug-in (ActiveX control for IE and plug-in for other browsers) and is triggered w...

Authentication flaw

MOHA Chat 0.1b7 and earlier does not require authentication for use of the plug in API, which has unknown impact and attack vectors...

CVE-2007-0954

CVE-2007-0954 affects MOHA Chat 0.1b7 and earlier; the plug-in API can be used without authentication. The available sources state the impact and attack vectors are unknown, with no concrete remediation or exploitation details provided in the documents.

[Full-disclosure] Lizardtech DjVu Browser Plug-in - Multiple Vulnerabilities

======================================================================== = Lizardtech DjVu Browser Plug-in - Multiple Vulnerabilities = = Vendor Website: = http://www.lizardtech.com/ = = Affected Version: = Windows DjVu Browser Plug-in 6.1.1 = = Public disclosure on February 15th 2007...