Lucene search
K

389 matches found

securityvulns
securityvulns
added 2009/12/09 12:0 a.m.61 views

Microsoft Security Bulletin MS09-069 - Important Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service (974392)

Microsoft Security Bulletin MS09-069 - Important Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service 974392 Published: December 08, 2009 Version: 1.0 General Information Executive Summary This security update resolves a privately reported vulnerability in...

6.8CVSS1.1AI score0.24705EPSS
Exploits1
Packet Storm
Packet Storm
added 2009/11/26 12:0 a.m.35 views

Macrovision InstallShield Update Service Buffer Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Macrovision...

9.3CVSS1.5AI score0.36619EPSS
Exploits12
securityvulns
securityvulns
added 2009/06/10 12:0 a.m.118 views

Microsoft Security Bulletin MS09-026 - Important Vulnerability in RPC Could Allow Elevation of Privilege (970238)

Microsoft Security Bulletin MS09-026 - Important Vulnerability in RPC Could Allow Elevation of Privilege 970238 Published: June 9, 2009 Version: 1.0 General Information Executive Summary This security update resolves a publicly disclosed vulnerability in the Windows remote procedure call RPC...

10CVSS1.6AI score0.32387EPSS
Exploits1
securityvulns
securityvulns
added 2009/04/14 12:0 a.m.101 views

Microsoft Security Bulletin MS09-013 - Critical Vulnerabilities in Windows HTTP Services Could Allow Remote Code Execution (960803)

Microsoft Security Bulletin MS09-013 - Critical Vulnerabilities in Windows HTTP Services Could Allow Remote Code Execution 960803 Published: April 14, 2009 Version: 1.0 General Information Executive Summary This security update resolves one publicly disclosed vulnerability and two privately...

10CVSS0.8AI score0.1415EPSS
Exploits7
Check Point Advisories
Check Point Advisories
added 2008/09/23 12:0 a.m.4 views

Macrovision InstallShield Update Service Agent ActiveX Memory Corruption (CVE-2008-2470)

Macrovision InstallShield is a software tool for creating installers or software packages. A memory corruption vulnerability has been reported in Macrovision InstallShield Update Service. The vulnerability is due to a design error in the Macrovision InstallShield Update Service while processing...

9.3CVSS7.2AI score0.05481EPSS
Exploits0
NVD
NVD
added 2008/09/18 6:0 p.m.16 views

CVE-2008-2470

The InstallShield Update Service Agent ActiveX control in isusweb.dll allows remote attackers to cause a denial of service memory corruption and browser crash and possibly execute arbitrary code via a call to ExecuteRemote with a URL that results in a 404 error response...

9.3CVSS7.8AI score0.05481EPSS
Exploits0References5
CVE
CVE
added 2008/09/18 6:0 p.m.43 views

CVE-2008-2470

CVE-2008-2470 : The InstallShield Update Service Agent ActiveX control in isusweb.dll has a memory corruption vulnerability triggered by ExecuteRemote() with a URL returning 404. This can allow remote, unauthenticated attackers to execute arbitrary code or crash the browser. The issue affects the...

9.3CVSS7.8AI score0.05481EPSS
Exploits0References5Affected Software1
CERT
CERT
added 2008/09/18 12:0 a.m.29 views

InstallShield Update Service Agent ActiveX control memory corruption

Overview The InstallShield Update Service ActiveX control contains a memory corruption vulnerability that can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The InstallShield Update Service contains an ActiveX control called Update Service...

9.3CVSS6.9AI score0.05481EPSS
Exploits0References4
Check Point Advisories
Check Point Advisories
added 2008/01/17 12:0 a.m.15 views

Macrovision InstallShield Update Service ActiveX Control Code Execution (CVE-2007-5660)

Macrovision InstallShield is a software tool for creating installers or software packages. This vulnerability is due to errors in the Macrovision InstallShield Update Service ActiveX Control when handling webpage scripts. To trigger this issue, an attacker may create a malicious web page that wil...

9.3CVSS6.8AI score0.36619EPSS
Exploits12
Prion
Prion
added 2008/01/04 11:46 a.m.30 views

Buffer overflow

Buffer overflow in a certain ActiveX control in Macrovision InstallShield Update Service Web Agent 5.1.100.47363 allows remote attackers to execute arbitrary code via a long string in the ProductCode argument second argument to the DownloadAndExecute method, a different vulnerability than...

9.3CVSS7.9AI score0.36619EPSS
Exploits17References4Affected Software1
CVE
CVE
added 2008/01/04 11:0 a.m.60 views

CVE-2007-6654

CVE-2007-6654 is a buffer overflow in Macrovision InstallShield Update Service Web Agent 5.1.100.47363, affecting its ActiveX control. A remote attacker can execute arbitrary code by passing a long ProductCode string as the second argument to the DownloadAndExecute method. This entry is distinct ...

9.3CVSS7.5AI score0.05554EPSS
Exploits5References4Affected Software1
Saint
Saint
added 2008/01/04 12:0 a.m.39 views

MacroVision InstallShield Update Service DownloadAndExecute buffer overflow

Added: 01/04/2008 CVE: CVE-2007-6654 BID: 27013 OSVDB: 39980 Background MacroVision InstallShield is software for creating installers or software packages. Problem A buffer overflow in the DownloadAndExecute function in the Update Service ActiveX control allows command execution when a user loads...

9.3CVSS6.9AI score0.05554EPSS
Exploits5
Saint
Saint
added 2008/01/04 12:0 a.m.31 views

MacroVision InstallShield Update Service DownloadAndExecute buffer overflow

Added: 01/04/2008 CVE: CVE-2007-6654 BID: 27013 OSVDB: 39980 Background MacroVision InstallShield is software for creating installers or software packages. Problem A buffer overflow in the DownloadAndExecute function in the Update Service ActiveX control allows command execution when a user loads...

9.3CVSS6.9AI score0.05554EPSS
Exploits5
Saint
Saint
added 2008/01/04 12:0 a.m.32 views

MacroVision InstallShield Update Service DownloadAndExecute buffer overflow

Added: 01/04/2008 CVE: CVE-2007-6654 BID: 27013 OSVDB: 39980 Background MacroVision InstallShield is software for creating installers or software packages. Problem A buffer overflow in the DownloadAndExecute function in the Update Service ActiveX control allows command execution when a user loads...

9.3CVSS6.9AI score0.05554EPSS
Exploits5
securityvulns
securityvulns
added 2007/12/26 12:0 a.m.46 views

Macrovision InstallShield ActiveX code execution

Unsafe Update Service ActiveX method allows code execution...

9.3CVSS4.2AI score0.36619EPSS
Exploits12References2Affected Software1
Packet Storm
Packet Storm
added 2007/12/24 12:0 a.m.21 views

installshield-overflow.txt

The InstallShield Update Service Web Agent version 5.1.100.47363 suffers from an exploitable buffer overflow in the ProductCode parameter of the DownloadAndExecute function. This object is marked safe for scripting. Note that this issue appears to different from...

7.4AI score
Exploits0
Saint
Saint
added 2007/12/07 12:0 a.m.31 views

MacroVision InstallShield Update Service isusweb.dll unsafe method

Added: 12/07/2007 CVE: CVE-2007-5660 BID: 26280 OSVDB: 38347 Background MacroVision InstallShield is software for creating installers or software packages. Problem Several unsafe methods in the Update Service ActiveX control allow command execution when a user loads a specially crafted web page...

9.3CVSS6.5AI score0.36619EPSS
Exploits12
Saint
Saint
added 2007/12/07 12:0 a.m.84 views

MacroVision InstallShield Update Service isusweb.dll unsafe method

Added: 12/07/2007 CVE: CVE-2007-5660 BID: 26280 OSVDB: 38347 Background MacroVision InstallShield is software for creating installers or software packages. Problem Several unsafe methods in the Update Service ActiveX control allow command execution when a user loads a specially crafted web page...

9.3CVSS6.5AI score0.36619EPSS
Exploits12
Saint
Saint
added 2007/12/07 12:0 a.m.60 views

MacroVision InstallShield Update Service isusweb.dll unsafe method

Added: 12/07/2007 CVE: CVE-2007-5660 BID: 26280 OSVDB: 38347 Background MacroVision InstallShield is software for creating installers or software packages. Problem Several unsafe methods in the Update Service ActiveX control allow command execution when a user loads a specially crafted web page...

9.3CVSS6.5AI score0.36619EPSS
Exploits12
Saint
Saint
added 2007/12/07 12:0 a.m.33 views

MacroVision InstallShield Update Service isusweb.dll unsafe method

Added: 12/07/2007 CVE: CVE-2007-5660 BID: 26280 OSVDB: 38347 Background MacroVision InstallShield is software for creating installers or software packages. Problem Several unsafe methods in the Update Service ActiveX control allow command execution when a user loads a specially crafted web page...

9.3CVSS6.5AI score0.36619EPSS
Exploits12
Rows per page
Query Builder