[SECURITY] Fedora 8 Update: rubygem-rails-2.1.1-2.fc8

Rails is a framework for building web-application using CGI, FCGI, modruby, or WEBrick on top of either MySQL, PostgreSQL, SQLite, DB2, SQL Server, or Oracle with eRuby- or Builder-based templates...

Microsoft SQL Server Elevation of Privilege Vulnerabilities (941203)

This host has Microsoft SQL Server, which is prone to Privilege Escalation Vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...

Microsoft SQL Server 2000 Client Components ActiveX Control Buffer Overflow (CVE-2008-4110)

Microsoft SQL Server is a relational database management system RDBMS. A buffer overflow vulnerability has been reported in Microsoft SQL Server. The vulnerability is due to a boundary error in the Microsoft SQL Server 2000 Client Components ActiveX Control sqlvdir.dll when handling parameters...

MS SQL Server Elevation of Privilege Vulnerabilities (941203)

This host has Microsoft SQL Server, which is prone to Privilege Escalation Vulnerabilities. OpenVAS Vulnerability Test $Id: gbms08-040.nasl 5863 2017-04-05 07:38:11Z antu123 $ MS SQL Server Elevation of Privilege Vulnerabilities 941203 Authors: Veerendra GG Copyright: Copyright c 2008 Greenbone...

Mircosoft Windows Token Kidnapping本地提权漏洞

CNCAN ID：CNCAN-2008101007 Microsoft Windows是一款流行的操作系统。 漏洞是由于在NetworkService或LocalService上下文运行的代码，可以访问同样是在 NetworkService或LocalService上下文下运行的进程，部分进程允许提升特权到LocalSystem。 对于IIS，默认安装是不受影响的，以Full Trust运行的ASP.NET代码受此漏洞影响，如果权限低于Full Trust，也不受此漏洞影响。同样旧Asp代码不受此漏洞影响，只有ASP.NET才受影响。 针对SQL...

MS Windows Token Kidnapping local provide the right solutions-vulnerability warning-the black bar safety net

Today MS updated security Bulletin This vulnerability is due inNetworkService or LocalService the following code running, you can access the same in the NetworkService or LocalService processes that run under that certain processes allow elevation of privileges for theLocalSystem it. For IIS, the...

MS Win2003 Token Kidnapping Local Exploit PoC-vulnerability warning-the black bar safety net

Neeao: it is said that there have been N many people use to mention the right to success. From: It has been a long time since Token Kidnapping presentation was published so I decided to release a PoC exploit for Win2k3 that alows to execute code under SYSTEM account. Basically if you can run code...

MS Windows 2003 Token Kidnapping Local Exploit PoC

No description provided by source. From http://nomoreroot.blogspot.com/2008/10/windows-2003-poc-exploit-for-token.html It has been a long time since Token Kidnapping presentation http://www.argeniss.com/research/TokenKidnapping.pdf was published so I decided to release a PoC exploit for Win2k3 th...

Microsoft Windows Server 2003 - Token Kidnapping Local Privilege Escalation

From http://nomoreroot.blogspot.com/2008/10/windows-2003-poc-exploit-for-token.html It has been a long time since Token Kidnapping presentation http://www.argeniss.com/research/TokenKidnapping.pdf was published so I decided to release a PoC exploit for Win2k3 that alows to execute code under SYST...

Microsoft Windows Server 2003 - Token Kidnapping Local Privilege Escalation

Microsoft Windows Server 2003 - Token Kidnapping Local Privilege Escalation From http://nomoreroot.blogspot.com/2008/10/windows-2003-poc-exploit-for-token.html It has been a long time since Token Kidnapping presentation http://www.argeniss.com/research/TokenKidnapping.pdf was published so I decid...

MS Windows 2003 Token Kidnapping Local Exploit PoC

Exploit for unknown platform in category local exploits ================================================== MS Windows 2003 Token Kidnapping Local Exploit PoC ================================================== From http://nomoreroot.blogspot.com/2008/10/windows-2003-poc-exploit-for-token.html It h...

MS08-040: Microsoft SQL Server Multiple Privilege Escalation (941203) (uncredentialed check)

The remote host is running a version of Microsoft SQL Server, Desktop Engine, or Internal Database that is affected by multiple vulnerabilities : - An information disclosure vulnerability exists due to improper initialization of memory pages when reallocating memory. An unauthenticated, remote...

[SECURITY] Fedora 9 Update: rubygem-rails-2.1.1-2.fc9

Rails is a framework for building web-application using CGI, FCGI, modruby, or WEBrick on top of either MySQL, PostgreSQL, SQLite, DB2, SQL Server, or Oracle with eRuby- or Builder-based templates...

CVE-2008-4110

Buffer overflow in the SQLVDIRLib.SQLVDirControl ActiveX control in Tools\Binn\sqlvdir.dll in Microsoft SQL Server 2000 aka SQL Server 8.0 allows remote attackers to cause a denial of service browser crash or possibly execute arbitrary code via a long URL in the second argument to the Connect...

CVE-2008-4110

The OpenVAS/OpenVAS-derived data (plus CVE-2008-4110 details) confirms a buffer overflow in the Microsoft SQL Server 2000 ActiveX control: sqlvdir.dll (SQLVDIRLib.SQLVDirControl) that is loaded from Tools\Binn\sqlvdir.dll. The vulnerability is triggered by a long URL passed as the second argument...

Buffer overflow

Buffer overflow in the SQLVDIRLib.SQLVDirControl ActiveX control in Tools\Binn\sqlvdir.dll in Microsoft SQL Server 2000 aka SQL Server 8.0 allows remote attackers to cause a denial of service browser crash or possibly execute arbitrary code via a long URL in the second argument to the Connect...

CVE-2008-4110

Buffer overflow in the SQLVDIRLib.SQLVDirControl ActiveX control in Tools\Binn\sqlvdir.dll in Microsoft SQL Server 2000 aka SQL Server 8.0 allows remote attackers to cause a denial of service browser crash or possibly execute arbitrary code via a long URL in the second argument to the Connect...

Microsoft SQL Server sqlvdir.dll ActiveX控件缓冲区溢出漏洞

BUGTRAQ ID: 31129 Microsoft SQL Server是一款流行的SQL数据库系统。 SQL Server所安装的sqlvdir.dll ActiveX控件（默认路径为C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlvdir.dll，clsid：FC13BAA2-9C1A-4069-A221-31A147636038）所暴露的ISQLVDirControl接口没有正确的验证用户输入参数，如果用户受骗访问了恶意网页并向该方式传送了超长参数的话，就可能触发缓冲区溢出，导致执行任意代码。 Microsoft S...

CVE-2008-3013

gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digital Image Suite 2006,...

CVE-2008-3014

Buffer overflow in gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digita...