Lucene search
K

2974 matches found

Exploit DB
Exploit DB
added 2007/11/13 12:0 a.m.24 views

WebEx GPCContainer - Memory Access Violation Multiple Denial of Service Vulnerabilities

source: https://www.securityfocus.com/bid/26430/info WebEx is prone to multiple remote denial-of-service vulnerabilities. Attackers can exploit these issues to crash applications that use the ActiveX control, denying service to legitimate users. function Check var obj = new...

7AI score
Exploits0
exploitpack
exploitpack
added 2007/11/13 12:0 a.m.12 views

WebEx GPCContainer - Memory Access Violation Multiple Denial of Service Vulnerabilities

WebEx GPCContainer - Memory Access Violation Multiple Denial of Service Vulnerabilities source: https://www.securityfocus.com/bid/26430/info WebEx is prone to multiple remote denial-of-service vulnerabilities. Attackers can exploit these issues to crash applications that use the ActiveX control,...

0.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/07/14 12:0 a.m.23 views

WebEx Downloader ActiveX Control Command Injection

The Windows remote host contains the WebEx Downloader ActiveX control, which is used when attending or hosting a meeting using WebEx, a sharing and conferencing application for Windows. The version of this ActiveX control on the remote host reportedly allows an attacker to deliver arbitrary...

9.3CVSS5.8AI score0.08559EPSS
Exploits1References4
securityvulns
securityvulns
added 2006/07/08 12:0 a.m.70 views

Multiple WebEx downloader plugin vulnerabilities

Buffer overflow, code execution...

3.9AI score
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2006/07/08 12:0 a.m.34 views

WebEx Downloader Plug-in Multiple Vulnerabilities + rant

All these vulnerabilities were reported to WebEx by NGS Software back on the 24th February 2005 along with some other issues. The current Director of the X-Force new about these issues as at the time of their discovery, he worked with NGS. Seeing as I'm the subject, here is another example whereb...

0.9AI score
Exploits0
securityvulns
securityvulns
added 2006/07/08 12:0 a.m.32 views

[SA20956] WebEx Downloader Plug-in Multiple Vulnerabilities

---------------------------------------------------------------------- Reverse Engineer Wanted Secunia offers a Security Specialist position with emphasis on reverse engineering of software and exploit code, auditing of source code, and analysis of vulnerability reports...

1.9AI score
Exploits0
securityvulns
securityvulns
added 2006/07/08 12:0 a.m.42 views

ZDI-06-021: WebEx Downloader Plug-in Code Execution Vulnerability

ZDI-06-021: WebEx Downloader Plug-in Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-021.html July 6, 2006 -- CVE ID: CVE-2006-3423 -- Affected Vendor: WebEx Communications -- Affected Products: WebEx Downloader Plug-in tested on v2.0.0.7 -- TippingPointTM IPS...

9.3CVSS1.1AI score0.08559EPSS
Exploits1
NVD
NVD
added 2006/07/07 12:5 a.m.9 views

CVE-2006-3424

Multiple buffer overflows in WebEx Downloader ActiveX Control, possibly in versions before November 2005, allow remote attackers to execute arbitrary code via unspecified vectors...

7.5CVSS7.9AI score0.03119EPSS
Exploits0References4
NVD
NVD
added 2006/07/07 12:5 a.m.15 views

CVE-2006-3423

WebEx Downloader ActiveX Control and WebEx Downloader Java before 2.1.0.0 do not validate downloaded components, which allows remote attackers to execute arbitrary code via a website that activates the GpcUrlRoot and GpcIniFileName ActiveX controls to cause the client to download a DLL file...

9.3CVSS7.7AI score0.08559EPSS
Exploits1References11
CVE
CVE
added 2006/07/07 12:0 a.m.40 views

CVE-2006-3424

CVE-2006-3424 concerns multiple buffer overflows in the WebEx Downloader ActiveX Control, potentially affecting versions prior to November 2005. The vulnerability could allow remote code execution by an attacker via unspecified attack vectors. The connected documents confirm the affected componen...

7.5CVSS8.3AI score0.03119EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2006/07/07 12:0 a.m.13 views

CVE-2006-3424

Multiple buffer overflows in WebEx Downloader ActiveX Control, possibly in versions before November 2005, allow remote attackers to execute arbitrary code via unspecified vectors...

7.9AI score0.03119EPSS
Exploits0References4
CVE
CVE
added 2006/07/07 12:0 a.m.43 views

CVE-2006-3423

CVE-2006-3423 affects WebEx Downloader ActiveX/Java controls prior to version 2.1.0.0. The vulnerability stems from lack of validation of downloaded components and control parameters (notably GpcUrlRoot and GpcIniFileName), allowing an attacker to supply a configuration file that can lead to DLL ...

9.3CVSS7.7AI score0.08559EPSS
Exploits1References11Affected Software2
Cvelist
Cvelist
added 2006/07/07 12:0 a.m.15 views

CVE-2006-3423

WebEx Downloader ActiveX Control and WebEx Downloader Java before 2.1.0.0 do not validate downloaded components, which allows remote attackers to execute arbitrary code via a website that activates the GpcUrlRoot and GpcIniFileName ActiveX controls to cause the client to download a DLL file...

7.7AI score0.08559EPSS
Exploits1References11
Zero Day Initiative
Zero Day Initiative
added 2006/07/06 12:0 a.m.17 views

WebEx Downloader Plug-in Code Execution Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of the WebEx Downloader Plug-in. Successful exploitation requires that the target user browse to a malicious web page. The specific flaws exists due to the lack of input validation on various ActiveX/Java...

9.3CVSS5.9AI score0.08559EPSS
Exploits1References1
Rows per page
Query Builder