19 matches found
Microsoft Windows URI Handler Command Execution Vulnerability
Description Microsoft Windows XP and Server 2003 with Internet Explorer 7 is prone to a command-execution vulnerability because it fails to properly sanitize input. Successfully exploiting this issue allows remote attackers to execute arbitrary commands in the context of users that follow malicio...
Microsoft OLE Automation SubstringData Function Integer Overflow Vulnerability
Description Microsoft OLE Automation is prone to an integer-overflow vulnerability. this issue occurs because the application fails to ensure that integer values are not overrun. Successfully exploiting this issue allows remote attackers to corrupt heap memory and execute arbitrary in the context...
Microsoft Internet Explorer CSS Strings Memory Corruption Vulnerability
Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability because the application fails to properly handle certain CSS data. An attacker may exploit this issue by enticing victims into opening a maliciously crafted HTML document. Successful exploits may allow an...
Microsoft XML Core Services SubstringData Integer Overflow Vulnerability
Description Microsoft XML Core Services is prone to an integer-overflow vulnerability because the application fails to ensure that integer values are not overrun. Attackers can exploit this issue by enticing unsuspecting users to view malicious web content. Specially crafted scripts could issue...
Microsoft Excel Worksheet Index Value Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers may exploit this issue by enticing victims into opening a maliciously crafted Excel file .xls. Successful exploits may allow attackers to execute arbitrary code with the privileges of the user running the...
Microsoft Windows Vista Teredo Interface Firewall Bypass Vulnerability
Description Windows Firewall for Windows Vista is prone to a vulnerability that may permit a bypass of existing firewall rules. An attacker may trigger this vulnerability by sending malicious network data through the Teredo network transport system to obtain sensitive information; other attacks a...
Microsoft .NET Framework PE Loader Remote Buffer Overflow Vulnerability
Description Microsoft .NET Framework is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code in the context of a user running the application. Successful exploits ca...
Microsoft Windows Active Directory LDAP Request Validation Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability because Microsoft Active Directory fails to handle specially crafted user-supplied Lightweight Directory Access Protocol LDAP requests. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level...
Microsoft .NET Framework JIT Compiler Remote Buffer Overflow Vulnerability
Description Microsoft .NET Framework is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code in the context of a user running the application. Successful exploits ca...
Microsoft Excel Workspace Designation Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers may exploit this issue by enticing victims into opening a maliciously crafted Excel file .xls. Successful exploits may allow attackers to execute arbitrary code with the privileges of the user running the...
Microsoft Internet Explorer CSS Tag Memory Corruption Vulnerability
Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability because the application fails to properly handle certain CSS data. A remote attacker can exploit this issue to execute arbitrary code in the context of the user running the vulnerable application. Technologi...
Microsoft Internet Explorer Language Pack Installation Remote Code Execution Vulnerability
Description Microsoft Internet Explorer is prone to remote code-execution vulnerability because of a race-condition in its language-pack installation support. A remote attacker can exploit this issue to execute arbitrary code in the context of the user running the vulnerable application...
Microsoft Internet Explorer URLMON.DLL COM Object Instantiation Remote Code Execution Vulnerability
Description Microsoft Internet Explorer is prone to remote code-execution vulnerability. A remote attacker can exploit this issue to execute arbitrary code in the context of the user running the vulnerable application. Technologies Affected Avaya CIE 1.0 Avaya Messaging Application Server Avaya...
Microsoft Windows Media Server MDSAuth.DLL ActiveX Control Remote Code Execution Vulnerability
Description The Microsoft Windows Media Server ActiveX control is prone to a remote code-execution vulnerability. An attacker may exploit this issue by enticing victims into opening a maliciously crafted HTML document. Successfully exploiting this issue allows remote attackers to execute arbitrar...
Microsoft Excel BIFF Record Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of a victim user running the application. A successful exploit will result in the compromise of the application and may aid in further attacks...
Microsoft Word Array Remote Code Execution Vulnerability
Description Microsoft Word is prone to a remote code-execution vulnerability. An attacker could exploit this issue by enticing a victim to open a malicious Word file. Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently logged-in...
Microsoft Excel Set Font Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of a victim user running the application. A successful exploit will result in the compromise of the application and may aid in further attacks...
Microsoft Win32 API Parameter Validation Remote Code Execution Vulnerability
Description The Microsoft Win32 API is prone to remote code execution. An attacker could exploit this issue to execute code in the context of the user visiting a malicious webpage. Technologies Affected Avaya CIE 1.0 Avaya Messaging Application Server Avaya Messaging Application Server MM 1.1 Ava...
Microsoft Excel Worksheet Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers may exploit this issue by enticing victims into opening a maliciously crafted Excel file .xls. Successful exploits may allow attackers to execute arbitrary code with the privileges of the user running the...