Lucene search
+L

71 matches found

Packet Storm
Packet Storm
added 2008/12/31 12:0 a.m.29 views

Chilkat FTP Active-X Insecure Method

ChilkatSocket.DLL Arbitrary File Creation ChilkatFTP.dll v3.0.0.2 ChilkatSocket.DLL Arbitrary File Creation ChilkatFTP.dll v3.0.0.2 Arbitrary Data Write Exploit function Doit File = "c:\boot.ini" ctrl.SaveLastErrorFile...

7.4AI score
Exploits0
0day.today
0day.today
added 2008/12/14 12:0 a.m.36 views

EvansFTP (EvansFTP.ocx) Remote Buffer Overflow PoC

Exploit for unknown platform in category dos / poc ================================================== EvansFTP EvansFTP.ocx Remote Buffer Overflow PoC ================================================== EvansFTP EvansFTP.ocx Remote Buffer Overflow PoC + Application : EvansFTP ActiveX + CompanyName...

7AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2008/10/15 10:45 p.m.3 views

CVE-2008-4586

Insecure method vulnerability in the MVSNCLientWebAgent61.WebAgent.1 ActiveX control isusweb.dll 6.1.100.61372 in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the DownloadAndExecute method...

9.3CVSS6AI score0.05165EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2008/09/02 12:0 a.m.5 views

PT-2008-5213 · Unknown · Ultra Office Control

Name of the Vulnerable Software and Affected Versions: Ultra Office Control version 2.0.2008.801 Description: The issue is a stack-based buffer overflow in the Ultra.OfficeControl ActiveX control. This occurs when the strUrl, strFile, and strPostData parameters to the HttpUpload method are overly...

9.3CVSS8.1AI score0.36228EPSS
Exploits4References10
Positive Technologies
Positive Technologies
added 2008/06/12 12:0 a.m.6 views

PT-2008-2565 · Backweb +1 · Backweb +1

Name of the Vulnerable Software and Affected Versions: BackWeb versions prior to 8.1.1.87 Logitech Desktop Manager versions prior to 2.56 Description: The issue is related to multiple stack-based buffer overflows in the BackWeb Lite Install Runner ActiveX control. This allows remote attackers to...

9.3CVSS7.7AI score0.08395EPSS
Exploits1References12
ATTACKERKB
ATTACKERKB
added 2008/02/04 11:0 p.m.3 views

CVE-2007-6699

Multiple buffer overflows in the AIM PicEditor 9.5.1.8 ActiveX control in YGPPicEdit.dll in AOL You've Got Pictures YGP Picture Editor allow remote attackers to cause a denial of service browser crash via a long string in the 1 DisplayName, 2 FinalSavePath, 3 ForceSaveTo, 4 HiddenControls, 5...

4.3CVSS5.7AI score0.04496EPSS
Exploits1References6
securityvulns
securityvulns
added 2007/11/12 12:0 a.m.55 views

AOL Radio AmpX Active X buffer overflow

Multiple buffer overflows in different methods...

9.3CVSS3.7AI score0.12972EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2006/10/18 12:0 a.m.61 views

Internet Explorer Heap Spray Shell Code Execution (MS06-055 MS06-067; CVE-2006-4446; CVE-2006-4777; CVE-2006-4868; CVE-2009-2991)

Heap spraying is a new and increasingly popular technique to exploit vulnerabilities in Internet browsers. Heap spraying is used by attackers to implant a shell code on a target system. Shell code is a piece of executable code that opens a command shell that the attacker can control remotely...

9.3CVSS7.6AI score0.78755EPSS
Exploits12
securityvulns
securityvulns
added 2000/09/28 12:0 a.m.37 views

DoS против IE/Outlook через Microsoft Media Player

Некорректный OCX-Active X приводит к закрытию почтового клиента с ошибкой...

1.5AI score
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2000/07/01 12:0 a.m.31 views

Заткнута дырка в IE (CAB AtciveX)

Элемент управления Active X позволял загрузить CAB-файлы подписанные Microsoft в любое место на диске без запроса пользователя, что позволяло испортить имеющиеся системные файлы...

0.8AI score
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.59 views

msie.5.dhtml.cuartango.txt

Date: Wed, 24 Mar 1999 12:11:09 +0100 From: Juan Carlos Garcia Cuartango To: [email protected] Subject: IE 5 security vulnerabilities Greetings, Microsoft delivers with IE 5 an Active X control called "DHTML Edit control Safe for Scripting for IE 5". In my opinion this control IS N...

7.4AI score
Exploits0
Rows per page
Query Builder