71 matches found
Chilkat FTP Active-X Insecure Method
ChilkatSocket.DLL Arbitrary File Creation ChilkatFTP.dll v3.0.0.2 ChilkatSocket.DLL Arbitrary File Creation ChilkatFTP.dll v3.0.0.2 Arbitrary Data Write Exploit function Doit File = "c:\boot.ini" ctrl.SaveLastErrorFile...
EvansFTP (EvansFTP.ocx) Remote Buffer Overflow PoC
Exploit for unknown platform in category dos / poc ================================================== EvansFTP EvansFTP.ocx Remote Buffer Overflow PoC ================================================== EvansFTP EvansFTP.ocx Remote Buffer Overflow PoC + Application : EvansFTP ActiveX + CompanyName...
CVE-2008-4586
Insecure method vulnerability in the MVSNCLientWebAgent61.WebAgent.1 ActiveX control isusweb.dll 6.1.100.61372 in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the DownloadAndExecute method...
PT-2008-5213 · Unknown · Ultra Office Control
Name of the Vulnerable Software and Affected Versions: Ultra Office Control version 2.0.2008.801 Description: The issue is a stack-based buffer overflow in the Ultra.OfficeControl ActiveX control. This occurs when the strUrl, strFile, and strPostData parameters to the HttpUpload method are overly...
PT-2008-2565 · Backweb +1 · Backweb +1
Name of the Vulnerable Software and Affected Versions: BackWeb versions prior to 8.1.1.87 Logitech Desktop Manager versions prior to 2.56 Description: The issue is related to multiple stack-based buffer overflows in the BackWeb Lite Install Runner ActiveX control. This allows remote attackers to...
CVE-2007-6699
Multiple buffer overflows in the AIM PicEditor 9.5.1.8 ActiveX control in YGPPicEdit.dll in AOL You've Got Pictures YGP Picture Editor allow remote attackers to cause a denial of service browser crash via a long string in the 1 DisplayName, 2 FinalSavePath, 3 ForceSaveTo, 4 HiddenControls, 5...
AOL Radio AmpX Active X buffer overflow
Multiple buffer overflows in different methods...
Internet Explorer Heap Spray Shell Code Execution (MS06-055 MS06-067; CVE-2006-4446; CVE-2006-4777; CVE-2006-4868; CVE-2009-2991)
Heap spraying is a new and increasingly popular technique to exploit vulnerabilities in Internet browsers. Heap spraying is used by attackers to implant a shell code on a target system. Shell code is a piece of executable code that opens a command shell that the attacker can control remotely...
DoS против IE/Outlook через Microsoft Media Player
Некорректный OCX-Active X приводит к закрытию почтового клиента с ошибкой...
Заткнута дырка в IE (CAB AtciveX)
Элемент управления Active X позволял загрузить CAB-файлы подписанные Microsoft в любое место на диске без запроса пользователя, что позволяло испортить имеющиеся системные файлы...
msie.5.dhtml.cuartango.txt
Date: Wed, 24 Mar 1999 12:11:09 +0100 From: Juan Carlos Garcia Cuartango To: [email protected] Subject: IE 5 security vulnerabilities Greetings, Microsoft delivers with IE 5 an Active X control called "DHTML Edit control Safe for Scripting for IE 5". In my opinion this control IS N...