Microsoft Internet Explorer Uninitialized Memory Word Document Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Successful exploits will allow an attacker to run arbitrary code in the context of the user running the application. Failed attacks will cause denial-of-service conditions. The following versions of the...

Microsoft Windows Kernel 'Win32k.sys' Window Class Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. An attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Fail...

Microsoft Windows Common Control Library Remote Heap Buffer Overflow Vulnerability

Description Microsoft Windows Common Control Library is prone to a remote heap-based buffer-overflow vulnerability because the library fails to perform adequate boundary-checks on user-supplied data. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted web...

Microsoft Internet Explorer Anchor Element Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Avaya Aura Conferencing 6.0 Standard Avaya Aura Conferencing Standard Avaya CallPilo...

Microsoft Windows Embedded OpenType Font Engine Integer Overflow Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability that affects the Embedded OpenType EOT font engine. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attempts may trigger a denial-of-service conditio...

Microsoft Internet Explorer Auto-Complete Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Avaya Aura Conferencing 6.0 Standard Avaya Aura Conferencing Standard Avaya CallPilo...

Microsoft Internet Explorer Cross Domain CVE-2010-3330 Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to a cross-domain information-disclosure vulnerability because the application fails to properly enforce the same-origin policy. An attacker can exploit this issue to access content from a browser window in another domain or security zone. This may...

Microsoft Internet Explorer Uninitialized Memory CVE-2010-3326 Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Successful exploits will allow an attacker to run arbitrary code in the context of the user running the application. Failed attacks will cause denial-of-service conditions. Technologies Affected Avaya Aura...

Microsoft Windows Kernel 'Win32k.sys' Keyboard Layout Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. An attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Fail...

Microsoft Windows OpenType Font (OTF) Format Driver CVE-2010-2740 Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. Attackers may exploit this issue to execute arbitrary code with kernel-level privileges. Successfully exploiting this issue will result in the complete compromise of affected computers. Failed exploit attempts...

Microsoft Internet Explorer 'toStaticHTML' HTML Sanitizing Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to an information-disclosure vulnerability that affects the 'toStaticHTML' API. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Avaya Aura Conferencing 6.0 Standard Avaya Aura...

Netautor Professional 'login2.php' XSS Vulnerability

Netautor Professional is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

IBM WebSphere Application Server Administration Console DoS vulnerability

The host is running IBM WebSphere Application Server and is prone to unspecified vulnerability. OpenVAS Vulnerability Test $Id: secpodibmwasadminconsoleunspecifiedvuln.nasl 5394 2017-02-22 09:22:42Z teissa $ IBM WebSphere Application Server Administration Console DoS vulnerability Authors: Antu...

IBM WebSphere Application Server 7.x < 7.0.0.13 WS-Security Policy Vulnerability

IBM WebSphere Application Server is prone to a vulnerability when using WS-Security enabled JAX-WS web service application. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

IBM WebSphere Application Server 6.1.x < 6.1.0.33 DoS Vulnerability

IBM WebSphere Application Server is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

IBM WebSphere Application Server WS-Security Policy Unspecified vulnerability

The host is running IBM WebSphere Application Server and is prone to unspecified vulnerability. OpenVAS Vulnerability Test $Id: secpodibmwastimestampunspecifiedvuln.nasl 5394 2017-02-22 09:22:42Z teissa $ IBM WebSphere Application Server WS-Security Policy Unspecified vulnerability Authors: Antu...

IBM WebSphere Application Server 6.0 < 6.0.2.43 Multiple Vulnerabilities

IBM WebSphere Application Server 6.0 before Fix Pack 43 for 6.0.2 appears to be running on the remote host. As such, it is reportedly affected by multiple vulnerabilities : - The Web Container does not properly handle long filenames, which could cause it to respond with the incorrect file,...

IBM WebSphere Application Server 6.1 < 6.1.0.33 Multiple Vulnerabilities

IBM WebSphere Application Server 6.1 before Fix Pack 33 appears to be running on the remote host. As such, it is reportedly affected by multiple vulnerabilities : - An unspecified cross-site scripting vulnerability exists in the Administration Console. PM09250, PM11778 - An unspecified error exis...

Code injection

Unspecified vulnerability in the administrative console in IBM WebSphere Application Server WAS 6.1 before 6.1.0.33 allows remote authenticated users to cause a denial of service CPU consumption via a crafted URL...

CVE-2010-0781

Unspecified vulnerability in the administrative console in IBM WebSphere Application Server WAS 6.1 before 6.1.0.33 allows remote authenticated users to cause a denial of service CPU consumption via a crafted URL...