CVE-2005-1045

OpenText FirstClass 8.0 client does not properly sanitize strings before passing them to the Windows ShellExecute API, which allows remote attackers to execute arbitrary commands via a UNC path in a bookmark...

CVE-2005-1045

OpenText FirstClass 8.0 client does not properly sanitize strings before passing them to the Windows ShellExecute API, which allows remote attackers to execute arbitrary commands via a UNC path in a bookmark...

OpenText FirstClass 8.0 Client Arbitrary File Execution

Product: OpenText FirstClass 8.0 Client Homepage: http://www.firstclass.com Platform: Microsoft Windows Description: Insufficient validation of user input allows arbitrary file execution FirstClass bookmark files allow the user to organise their web address's using the familiar FirstClass desktop...

CVE-2003-0503

Buffer overflow in the ShellExecute API function of SHELL32.DLL in Windows 2000 before SP4 may allow attackers to cause a denial of service or execute arbitrary code via a long third argument...

CVE-2003-0503

Buffer overflow in the ShellExecute API function of SHELL32.DLL in Windows 2000 before SP4 may allow attackers to cause a denial of service or execute arbitrary code via a long third argument...

CVE-2003-0503

The CVE-2003-0503 entry applies to Windows 2000 before SP4, where a buffer overflow in ShellExecute (SHELL32.DLL) can be triggered by a long third argument. This could lead to denial of service or arbitrary code execution. The available documents specify the affected component and the root cause ...

Windows 2000 ShellExecute() buffer overflow

Buffer overflow in 3rd argument...

[SNS Advisory No.65] Windows 2000 ShellExecute() API Let Applications to Cause Buffer Overflow

---------------------------------------------------------------------- SNS Advisory No.65 Windows 2000 ShellExecute API Let Applications to Cause Buffer Overflow Problem first discovered: Thu, 5 Dec 2002 Published: Thu, 03 Jul 2003 Reference:...