Vulnerability in the way [email protected] handles MS-Logon Authentication.

AGR IT Advisory May 2, 2006 AGR-ADV-2006-01 TITLE: Vulnerability in the way [email protected] handles MS-Logon Authentication. Overview Deon Force discovered a vulnerability in Ultr@VNC 1.0.1 and earlier versions with MS-Logon I and MS-Logon II authentication that may allow attackers to crack the...

MS Windows Media Player 10 Plugin Overflow Exploit (MS06-006)

Exploit for unknown platform in category remote exploits ============================================================= MS Windows Media Player 10 Plugin Overflow Exploit MS06-006 ============================================================= WMP Plugin EMBED Exploit // Windows Media Player Plug-In...

Microsoft Security Bulletin MS06-006 Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution (911564)

Microsoft Security Bulletin MS06-006 Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution 911564 Published: February 14, 2006 Version: 1.0 Summary Who should read this document: Customers who use a Microsoft Windows Media Player...

Buffer overflow

Buffer overflow in the plug-in for Microsoft Windows Media Player WMP 9 and 10, when used in browsers other than Internet Explorer and set as the default application to handle media files, allows remote attackers to execute arbitrary code via HTML with an EMBED element containing a long src...

CVE-2006-0005

The CVE-2006-0005 vulnerability is a buffer overflow in the Windows Media Player plug-in (npdsplay.dll) used by non‑Microsoft browsers. When a user views HTML containing an EMBED tag with a long src attribute, it may allow remote code execution in the user’s context. Affected software includes Wi...

[Full-disclosure] VSR Advisory: IBM Tivoli Access Manager - Web Server Plug-in File Retrieval Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Virtual Security Research, LLC. http://www.vsecurity.com/ Security Advisory - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Advisory Name: Remote Directory Traversal and File Retrieval Release Date: 2006-02-03...

CVE-2005-4845

The Java Plug-in 1.4.203 and 1.4.204 controls, and the 1.4.203 and 1.4.204 redirector controls, allow remote attackers to cause a denial of service Internet Explorer crash by creating a COM object of the class associated with the control's CLSID, which is not intended for use within Internet...

CVE-2003-1229

X509TrustManager in 1 Java Secure Socket Extension JSSE in SDK and JRE 1.4.0 through 1.4.001, 2 JSSE before 1.0.3, 3 Java Plug-in SDK and JRE 1.3.0 through 1.4.1, and 4 Java Web Start 1.0 through 1.2 incorrectly calls the isClientTrusted method when determining server trust, which results in...

eRoom 6.0 PlugIn - Insecure File Download Handling

source: https://www.securityfocus.com/bid/14176/info The eRoom plug-in is prone to an insecure file download handling vulnerability. The issue is due to a design fault, where files that are shared by users are apparently passed to default file handlers when downloaded. This can occur without user...

CVE-2002-1696

The CVE concerns Microsoft Outlook plug-in PGP 7.0, 7.0.3, and 7.0.4. When the user replies to an encrypted message with the option “Automatically decrypt/verify when opening messages” enabled and “Always use Secure Viewer when decrypting” disabled, a decrypted copy of the message is silently sav...

C'Nedra 0.4 Network Plugin - 'Read_TCP_String' Remote Buffer Overflow

source: https://www.securityfocus.com/bid/13781/info C'Nedra Network Plug-in is prone to a remotely exploitable buffer overflow vulnerability. The issue exists in the 'gamemessagefunctions.cpp' source file and is due to inadequate bounds checking of user-supplied data. This vulnerability could be...

CVE-2005-0875

Multiple buffer overflows in the Yahoo plug-in for Trillian 2.0, 3.0, and 3.1 allow remote web servers to cause a denial of service application crash via a long string in an HTTP 1.1 response header...

IBM WebSphere Widespread configuration JSP disclosure

IBM WebSphere Widespread configuration JSP disclosure Release Date: 04/13/2005 Severity: High Systems Affected IBM WebSphere Application 6 and prior. Description The practice of sharing the document root of the app server within the document root of the web server creates a security exposure that...

CVE-2005-0875

CVE-2005-0875 affects the Yahoo plug-in for Trillian versions 2.0, 3.0, and 3.1. The issue is caused by multiple buffer overflows that allow a remote web server to crash the application (DoS) by sending a long string in an HTTP/1.1 response header. The NVD entry documents this as a denial-of-serv...

CVE-2005-0813

The CVE-2005-0813 entry describes a buffer overflow in the Initial Redirect (ir) Squid Proxy Plug-In versions 0.1 and 0.2. The underlying flaw is a buffer overflow in the plug-in, with potential impacts including denial of service and arbitrary code execution. The description notes that exploitat...

Mac OS X Java JRE Plug-in Capability Arbitrary Package Access (Security Update 2005-002)

The remote host is missing Security Update 2005-002. This security update contains a security bugfix for Java 1.4.2. A vulnerability in the Java Plug-in may allow an untrusted applet to escalate privileges, through JavaScript calling into Java code, including reading and writing files with the...

Sun Java Applet 1.x - Invocation Version Specification

Sun Java Applet 1.x - Invocation Version Specification source: https://www.securityfocus.com/bid/11757/info Java provides support for dynamic and static versioning when loading applets in the Java plug-in. This means that during the invocation of an applet, a user can request that a particular...

Sun Java Plug-in fails to restrict access to private Java packages

Overview There is a vulnerability in the Sun Java Plug-in that could allow a malicious Java applet to bypass restrictions for untrusted applets. Description The Java Plug-in is part of the Java 2 Runtime Environment JRE and establishes a framework for displaying Java applets within a web browser...

CVE-2004-0843

Internet Explorer 5.5 and 6 does not properly handle plug-in navigation, which allows remote attackers to alter displayed address bars and thereby spoof web pages, facilitating phishing attacks, aka the "Plug-in Navigation Address Bar Spoofing Vulnerability."...

CVE-2004-0843

CVE-2004-0843 is a Plug-in Navigation Address Bar Spoofing vulnerability in Internet Explorer (IE 5.01/5.5/6 families). A remote attacker could cause the address bar to show a URL different from the loaded page via plug‑ins, enabling phishing-like deception. The connected OpenVAS entries confirm ...