4530 matches found
DB Software Laboratory 'VImpX.ocx' ActiveX控件文件破坏漏洞
BUGTRAQ ID: 31907 CNCAN ID:CNCAN-2008102501 VImpX ActiveX控件允许跨表格或ODBC数据源将数据导入到Oracle、SQL Server或ODBC数据库中。 'VImpX.ocx' ActiveX控件存在多个安全问题,远程攻击者可以利用漏洞以应用程序权限执行任意指令或破坏系统文件。 1,传递超长字符串超过256字节可触发缓冲区溢出。 2,"LogFile"方法没有检查用户提供的参数,提交恶意文件名,并在"ClearLogFile"函数调用时删除文件内容。 3,"SaveToFile"方法没有检查用户提供的参数,可导致目标文件被破坏。 ...
DorsaCms (ShowPage.aspx) Remote SQL Injection Vulnerability
No description provided by source. --------------------------------------------------------- Portal Name: Dorsa CMS Vendor : http://www.dorsacms.com Description : A CMS written by iranian programmers which uses by governmental websites. Vulnerable File : ShowPage.aspx Dork: Powered by DorsaCms...
Sybase SQL Blank Password
The remote Sybase SQL server has the default SPDX-FileCopyrightText: 2008 Tenable Network Security Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
[SECURITY] Fedora 8 Update: rubygem-rails-2.1.1-2.fc8
Rails is a framework for building web-application using CGI, FCGI, modruby, or WEBrick on top of either MySQL, PostgreSQL, SQLite, DB2, SQL Server, or Oracle with eRuby- or Builder-based templates...
Microsoft SQL Server 2000 Client Components ActiveX Control Buffer Overflow (CVE-2008-4110)
Microsoft SQL Server is a relational database management system RDBMS. A buffer overflow vulnerability has been reported in Microsoft SQL Server. The vulnerability is due to a boundary error in the Microsoft SQL Server 2000 Client Components ActiveX Control sqlvdir.dll when handling parameters...
MS SQL Server Elevation of Privilege Vulnerabilities (941203)
This host has Microsoft SQL Server, which is prone to Privilege Escalation Vulnerabilities. OpenVAS Vulnerability Test $Id: gbms08-040.nasl 5863 2017-04-05 07:38:11Z antu123 $ MS SQL Server Elevation of Privilege Vulnerabilities 941203 Authors: Veerendra GG Copyright: Copyright c 2008 Greenbone...
Microsoft SQL Server Elevation of Privilege Vulnerabilities (941203)
This host has Microsoft SQL Server, which is prone to Privilege Escalation Vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...
Mircosoft Windows Token Kidnapping本地提权漏洞
CNCAN ID:CNCAN-2008101007 Microsoft Windows是一款流行的操作系统。 漏洞是由于在NetworkService或LocalService上下文运行的代码,可以访问同样是在 NetworkService或LocalService上下文下运行的进程,部分进程允许提升特权到LocalSystem。 对于IIS,默认安装是不受影响的,以Full Trust运行的ASP.NET代码受此漏洞影响,如果权限低于Full Trust,也不受此漏洞影响。同样旧Asp代码不受此漏洞影响,只有ASP.NET才受影响。 针对SQL...
MS Windows Token Kidnapping local provide the right solutions-vulnerability warning-the black bar safety net
Today MS updated security Bulletin This vulnerability is due inNetworkService or LocalService the following code running, you can access the same in the NetworkService or LocalService processes that run under that certain processes allow elevation of privileges for theLocalSystem it. For IIS, the...
MS Win2003 Token Kidnapping Local Exploit PoC-vulnerability warning-the black bar safety net
Neeao: it is said that there have been N many people use to mention the right to success. From: It has been a long time since Token Kidnapping presentation was published so I decided to release a PoC exploit for Win2k3 that alows to execute code under SYSTEM account. Basically if you can run code...
MS Windows 2003 Token Kidnapping Local Exploit PoC
No description provided by source. From http://nomoreroot.blogspot.com/2008/10/windows-2003-poc-exploit-for-token.html It has been a long time since Token Kidnapping presentation http://www.argeniss.com/research/TokenKidnapping.pdf was published so I decided to release a PoC exploit for Win2k3 th...
Microsoft Windows Server 2003 - Token Kidnapping Local Privilege Escalation
From http://nomoreroot.blogspot.com/2008/10/windows-2003-poc-exploit-for-token.html It has been a long time since Token Kidnapping presentation http://www.argeniss.com/research/TokenKidnapping.pdf was published so I decided to release a PoC exploit for Win2k3 that alows to execute code under SYST...
Microsoft Windows Server 2003 - Token Kidnapping Local Privilege Escalation
Microsoft Windows Server 2003 - Token Kidnapping Local Privilege Escalation From http://nomoreroot.blogspot.com/2008/10/windows-2003-poc-exploit-for-token.html It has been a long time since Token Kidnapping presentation http://www.argeniss.com/research/TokenKidnapping.pdf was published so I decid...
MS Windows 2003 Token Kidnapping Local Exploit PoC
Exploit for unknown platform in category local exploits ================================================== MS Windows 2003 Token Kidnapping Local Exploit PoC ================================================== From http://nomoreroot.blogspot.com/2008/10/windows-2003-poc-exploit-for-token.html It h...
MS08-040: Microsoft SQL Server Multiple Privilege Escalation (941203) (uncredentialed check)
The remote host is running a version of Microsoft SQL Server, Desktop Engine, or Internal Database that is affected by multiple vulnerabilities : - An information disclosure vulnerability exists due to improper initialization of memory pages when reallocating memory. An unauthenticated, remote...
[SECURITY] Fedora 9 Update: rubygem-rails-2.1.1-2.fc9
Rails is a framework for building web-application using CGI, FCGI, modruby, or WEBrick on top of either MySQL, PostgreSQL, SQLite, DB2, SQL Server, or Oracle with eRuby- or Builder-based templates...
CVE-2008-4110
Buffer overflow in the SQLVDIRLib.SQLVDirControl ActiveX control in Tools\Binn\sqlvdir.dll in Microsoft SQL Server 2000 aka SQL Server 8.0 allows remote attackers to cause a denial of service browser crash or possibly execute arbitrary code via a long URL in the second argument to the Connect...
CVE-2008-4110
The OpenVAS/OpenVAS-derived data (plus CVE-2008-4110 details) confirms a buffer overflow in the Microsoft SQL Server 2000 ActiveX control: sqlvdir.dll (SQLVDIRLib.SQLVDirControl) that is loaded from Tools\Binn\sqlvdir.dll. The vulnerability is triggered by a long URL passed as the second argument...
Buffer overflow
Buffer overflow in the SQLVDIRLib.SQLVDirControl ActiveX control in Tools\Binn\sqlvdir.dll in Microsoft SQL Server 2000 aka SQL Server 8.0 allows remote attackers to cause a denial of service browser crash or possibly execute arbitrary code via a long URL in the second argument to the Connect...
CVE-2008-4110
Buffer overflow in the SQLVDIRLib.SQLVDirControl ActiveX control in Tools\Binn\sqlvdir.dll in Microsoft SQL Server 2000 aka SQL Server 8.0 allows remote attackers to cause a denial of service browser crash or possibly execute arbitrary code via a long URL in the second argument to the Connect...