452 matches found
CVE-2006-2324
180solutions Zango downloads "required Adware components" without checking integrity or authenticity, which might allow context-dependent attackers to execute arbitrary code by subverting the DNS resolution of static.zangocash.com...
Code injection
180solutions Zango downloads "required Adware components" without checking integrity or authenticity, which might allow context-dependent attackers to execute arbitrary code by subverting the DNS resolution of static.zangocash.com...
CVE-2006-2324
180solutions Zango downloads "required Adware components" without checking integrity or authenticity, which might allow context-dependent attackers to execute arbitrary code by subverting the DNS resolution of static.zangocash.com...
CVE-2006-2324
The CVE-2006-2324 entry concerns 180solutions Zango adware that downloads “required Adware components” without integrity/authenticity checks, enabling a context-dependent attacker to execute arbitrary code by subverting DNS resolution of static.zangocash.com. The core issue is a lack of verificat...
[Full-disclosure] [TZO-042006] Insecure Auto-Update and File execution
Zango Adware - Insecure Auto-Update and File execution Reference : TZO-042006-Zango Author : Thierry Zoller Advisory : http://secdev.zoller.lu/research/zango.htm Shameless Plug : I would like to take the opportunity to invite you to the Security Conference known as "Hack.lu 2006" in the Grand-Duc...
Zango Adware code execution
The integrity of downloaded components is not checked...
Multiple Microsoft Internet Explorer browser security vulnerabilities
Drag-n-Drop vulnerability, URL Decoding Zone Spoofing Vulnerability, DHTML Method Heap Memory Corruption Vulnerability, Channel Definition Format CDF Cross Domain Vulnerability. This vulnerability can potentially be used for silent spyware or adware installation...
Microsoft Windows .ANI (animated cursor) files buffer overflow
USER32.DLL buffer overflow allows code to be executed. This vulnerability can potentially be used for silent spyware/adware installation...
BetterInternet Software Detection
The remote host is using BetterInternet. This program monitors web traffic, displaying pop-up/pop-under advertisements based on the content. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid12011; scriptversion"1.16"; scriptsetattributeattribute:"pluginmodificationdate...
BargainBuddy Software Detection
BargainBuddy is installed on the remote host. This is an adware program that monitors web searches and displays advertisements based on the search terms. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid12010; scriptversion"1.17";...
CYDOOR Software Detection
Cydoor Desktop Media, an adware program, is installed on the remote host. This program displays pop-up/pop-under advertisements and changes web browser settings e.g., homepage without the user's permission. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid12012;...
Free Community Detection
Free Community is installed on the remote host. This is an adware program that monitors web traffic, and replaces banner advertisements with advertisements of its choosing. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid12014; scriptversion"1.15";...