63 matches found
Microsoft Autorun Arbitrary Code Execution Vulnerability (08-038)
Windows Operating System is prone to an arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2009-0243
Microsoft Windows does not properly enforce the Autorun and NoDriveTypeAutoRun registry values, which allows physically proximate attackers to execute arbitrary code by 1 inserting CD-ROM media, 2 inserting DVD media, 3 connecting a USB device, and 4 connecting a Firewire device; 5 allows...
Code injection
Microsoft Windows does not properly enforce the Autorun and NoDriveTypeAutoRun registry values, which allows physically proximate attackers to execute arbitrary code by 1 inserting CD-ROM media, 2 inserting DVD media, 3 connecting a USB device, and 4 connecting a Firewire device; 5 allows...
CVE-2009-0243
CVE-2009-0243 describes a Windows Autorun/NoDriveTypeAutoRun enforcement vulnerability. The issue arises from improper validation of Autorun.inf and related registry keys, enabling arbitrary code execution when users insert media (CD/DVD/USB/Firewire) or perform actions like mapping a network dri...
hummingbird-registry.txt
------------------------------------------------------------------------------------ Hummingbird Deployment Wizard 2008 DeployRun.dll Registry Values Creation/Change url: http://www.hummingbird.com Author: shinnai mail: shinnaiatautisticidotorg site: http://www.shinnai.net This was written for...
Hummingbird Deployment Wizard 2008 Registry Values Creation/Change
No description provided by source. ------------------------------------------------------------------------------------ Hummingbird Deployment Wizard 2008 DeployRun.dll Registry Values Creation/Change url: http://www.hummingbird.com Author: shinnai mail: shinnaiatautisticidotorg site:...
Hummingbird Deployment Wizard 2008 - Registry Values CreationChange
Hummingbird Deployment Wizard 2008 - Registry Values CreationChange ------------------------------------------------------------------------------------ Hummingbird Deployment Wizard 2008 DeployRun.dll Registry Values Creation/Change url: http://www.hummingbird.com Author: shinnai mail:...
Hummingbird Deployment Wizard 2008 Registry Values Creation/Change
Exploit for unknown platform in category remote exploits ================================================================== Hummingbird Deployment Wizard 2008 Registry Values Creation/Change ==================================================================...
Hummingbird Deployment Wizard 2008 - Registry Values Creation/Change
------------------------------------------------------------------------------------ Hummingbird Deployment Wizard 2008 DeployRun.dll Registry Values Creation/Change url: http://www.hummingbird.com Author: shinnai mail: shinnaiatautisticidotorg site: http://www.shinnai.net This was written for...
CVE-2008-4050
A certain ActiveX control in fwRemoteCfg.dll 3.3.3.1 in Friendly Technologies FriendlyPPPoE Client 3.0.0.57 allows remote attackers to 1 create and read arbitrary registry values via the RegistryValue method, and 2 read arbitrary files via the GetTextFile method...
EUVD-2008-4035
A certain ActiveX control in fwRemoteCfg.dll 3.3.3.1 in Friendly Technologies FriendlyPPPoE Client 3.0.0.57 allows remote attackers to 1 create and read arbitrary registry values via the RegistryValue method, and 2 read arbitrary files via the GetTextFile method...
Authentication flaw
The management console in the Volume Manager Scheduler Service aka VxSchedService.exe in Symantec Veritas Storage Foundation for Windows SFW 5.0, 5.0 RP1a, and 5.1 accepts NULL NTLMSSP authentication, which allows remote attackers to execute arbitrary code via requests to the service socket that...
CVE-2008-3703
The management console in the Volume Manager Scheduler Service aka VxSchedService.exe in Symantec Veritas Storage Foundation for Windows SFW 5.0, 5.0 RP1a, and 5.1 accepts NULL NTLMSSP authentication, which allows remote attackers to execute arbitrary code via requests to the service socket that...
Security feature bypass
HP eSupportDiagnostics ActiveX control hpediag.dll 1.0.11.0 exports dangerous methods, which allows remote attackers to 1 read arbitrary files via the ReadTextFile method, or 2 read arbitrary registry values via the ReadValue method...
HP eSupportDiagnostics 1.0.11 - hpediag.dll ActiveX Control Multiple Information Disclosure Vulnerabilities
HP eSupportDiagnostics 1.0.11 - hpediag.dll ActiveX Control Multiple Information Disclosure Vulnerabilities source: https://www.securityfocus.com/bid/26967/info The HP eSupportDiagnostics ActiveX control is prone to multiple information-disclosure vulnerabilities. An attacker can exploit these...
Design/Logic Flaw
The HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center hpinfocenter.exe 1.0.1.1 in HP Quick Launch Button QLBCTRL.exe, aka QLB 6.3 and earlier, on Microsoft Windows before Vista allows remote attackers to create or modify arbitrary registry values via the...
CVE-2007-6333
The HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center hpinfocenter.exe 1.0.1.1 in HP Quick Launch Button QLBCTRL.exe, aka QLB 6.3 and earlier, allows remote attackers to read arbitrary registry values via the arguments to the GetRegValue method...
Design/Logic Flaw
The HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center hpinfocenter.exe 1.0.1.1 in HP Quick Launch Button QLBCTRL.exe, aka QLB 6.3 and earlier, allows remote attackers to read arbitrary registry values via the arguments to the GetRegValue method...
CVE-2007-6332
The CVE-2007-6332 entry concerns the HPInfoDLL.HPInfo.1 ActiveX control (HPInfoDLL.dll 1.0) shipped with HP Info Center in HP Quick Launch Button 6.3 and earlier on Windows before Vista. The vulnerability, via the SetRegValue method, allows remote attackers to create or modify arbitrary registry ...
CVE-2007-6332
The HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center hpinfocenter.exe 1.0.1.1 in HP Quick Launch Button QLBCTRL.exe, aka QLB 6.3 and earlier, on Microsoft Windows before Vista allows remote attackers to create or modify arbitrary registry values via the...