10 matches found
EUVD-2001-0137
Malware in sbrugna...
EUVD-2002-2370
Malware in sbrugna...
Logic design vulnerability in CSCMS Skin.php file
Cheng's CMS content management system referred to as CSCMS is a multi-functional network information management system developed by Chongsheng Network Technology. A logical design vulnerability exists in the CSCMS Skin.php file. The vulnerability is due to unfiltered processing of user-supplied...
GetRight 5.2a - .grs Skin File Buffer Overflow
GetRight 5.2a - .grs Skin File Buffer Overflow GetRight Skin File .grs Buffer Overflow May Let Remote Users Run Arbitrary Code Application: GetRight Headlight Software www.getright.com Author: ATmaCA a remote user can create a malicious skin file .grs that, when loaded by the target user, will...
Microsoft Windows Media Player 7.1 - Skin File Code Execution
Microsoft Windows Media Player 7.1 - Skin File Code Execution source: https://www.securityfocus.com/bid/7517/info Windows Media Player is vulnerable to code execution through skin files. WMP does not properly validate URLs that are passed to initiate a skin file download and installation. This...
CVE-2002-1014
Buffer overflow in RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary code via an RFS skin file whose skin.ini contains a long value in a CONTROLnImage argument, such as CONTROL1Image...
Real Networks RealONE Player vulnerable to arbitrary command execution via crafted html in the skin file
Overview RealNetwork's RealJukebox and RealONE Gold players are media applications that permit users to stream audio and video from local and internet sources. A vulnerability exists in the applications that could permit the execution of arbitrary commands by a remote attacker. Description...
[SPSadvisory#47]RealONE Player Gold / RealJukebox2 skin file download vulnerability
SPS Advisory 47 RealONE Player Gold / RealJukebox2 skin file download vulnerability UNYUN [email protected] Shadow Penguin Security http://www.shadowpenguin.org -------------------------------------------------------------- Date July. 12, 2002 vulnerable RealONE Player Gold Ver. 6.0.10.505...
CVE-2001-0137
Windows Media Player 7 allows remote attackers to execute malicious Java applets in Internet Explorer clients by enclosing the applet in a skin file named skin.wmz, then referencing that skin in the codebase parameter to an applet tag, aka the Windows Media Player Skins File Download" vulnerabili...
CVE-2001-0137
Windows Media Player 7 allows remote attackers to execute malicious Java applets in Internet Explorer clients by enclosing the applet in a skin file named skin.wmz, then referencing that skin in the codebase parameter to an applet tag, aka the Windows Media Player Skins File Download" vulnerabili...