PT-2026-29357

Name of the Vulnerable Software and Affected Versions XML Notepad versions prior to 2.9.0.21 Description XML Notepad, a Windows program for editing XML documents, does not disable DTD processing by default before version 2.9.0.21. This allows for the resolution of external entities. An attacker c...

CVE-2020-37101 VPN unlimited 6.1 - Unquoted Service Path

VPN Unlimited 6.1 contains an unquoted service path vulnerability that allows local attackers to inject malicious executables into the service binary path. Attackers can exploit the unquoted path in 'C:\Program Files x86\VPN Unlimited' to replace the service executable and gain elevated system...

CVE-2021-47807

Sync Breeze 13.6.18 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in service binaries located in 'Program Files' directories to inject malicious...

SUSE CVE-2017-15785

XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to a "Data Execution Prevention Violation near NULL starting at Unknown Symbol @ 0x0000000000000000 called from CADImage+0x0000000000286a79."...

EulerOS Virtualization 3.0.2.2 : openssl (EulerOS-SA-2020-1444)

According to the versions of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - OpenSSL has internal defaults for a directory tree where it can find a configuration file as well as certificates used for...

MiniShare 1.4.1 HEAD method buffer overflow

Added: 12/21/2018 Background MiniShare is a Windows program that allows sharing of files without additional services or software. Problem MiniShare 1.4.1 and earlier allows remote attackers to execute arbitrary code via a long HTTP HEAD request. Resolution MiniShare is deprecated. References...

Mircosoft Windows Program Group DLL Hijacking Exploit

Exploit for windows platform in category local exploits ===================================================== Mircosoft Windows Program Group DLL Hijacking Exploit ===================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 ...

Mozilla Foundation Security Advisory 2007-23

Mozilla Foundation Security Advisory 2007-23 Title: Remote code execution by launching Firefox from Internet Explorer Impact: Critical Announced: July 17, 2007 Reporter: Greg MacManus and Billy Rios Products: Firefox and Thunderbird Fixed in: Firefox 2.0.0.5 and Thunderbird 2.0.0.5 Description...

CVE-2004-0572

Buffer overflow in the Windows Program Group Converter grpconv.exe may allow remote attackers to execute arbitrary code via a shell: URL with a long filename and a .grp extension, which is not properly handled when the shell capability launches grpconv.exe...

CVE-2004-0572

Buffer overflow in the Windows Program Group Converter grpconv.exe may allow remote attackers to execute arbitrary code via a shell: URL with a long filename and a .grp extension, which is not properly handled when the shell capability launches grpconv.exe...

Flying.txt

Vulnerability: Any user can read any file in the system. title=Flying rev. 6.20 author=Helmut Hoenig system=tested on Redhat 5.2, possibly others [email protected] Grampa Elite Overview: Flying is a X-Windows program I have found installed on Redhat 5.2 that is actually a gateway for...