LPViewer ActiveX Control url property buffer overflow

Added: 11/21/2008 CVE: CVE-2008-4384 BID: 31604 OSVDB: 48946 Background The LPViewer ActiveX Control installs with the iseemedia ZOOM control viewer and allows viewing of images created with iseemedia software. Problem A buffer overflow vulnerability allows command execution when a user opens a w...

iSEC Partners Security Advisory - 2008-002-lenovornr - Lenovo Rescue and Recovery 4.20

iSEC Partners Security Advisory - 2008-002-lenovornr https://www.isecpartners.com -------------------------------------------- Lenovo Rescue and Recovery Local Kernel Overflow Vendor: Lenovo Vendor URL: http://www.lenovo.com Versions affected: 4.20 Systems Affected: Windows XP, Windows Vista...

quickitunes-oveflow.txt

Quicktime7.5.5/Itunes 8.0 Remote Heap Overflow Crash Vendor: http://www.apple.com/ Risk : high The "" tag fail to handle long strings, which can lead to a heap overflow in Quicktime/Itunes media player. This bug can be remote or local, Quicktime/Itunes parse any supplied file for a reconized head...

QuickTime 7.5.5 / ITunes 8.0 Remote Heap Overflow Crash Exploit

No description provided by source. Quicktime7.5.5/Itunes 8.0 Remote Heap Overflow Crash Vendor: http://www.apple.com/ Risk : high The "? quicktime type= ?" tag fail to handle long strings, which can lead to a heap overflow in Quicktime/Itunes media player. This bug can be remote or local,...

QuickTime 7.5.5 / ITunes 8.0 Remote off by one Crash Exploit

Exploit for multiple platform in category dos / poc ============================================================ QuickTime 7.5.5 / ITunes 8.0 Remote off by one Crash Exploit ============================================================ Quicktime7.5.5/Itunes 8.0 Remote Heap Overflow Crash Vendor:...

Apple QuickTime 7.5.5 iTunes 8.0 - Remote Off-by-One Crash

Apple QuickTime 7.5.5 iTunes 8.0 - Remote Off-by-One Crash Quicktime7.5.5/Itunes 8.0 Remote Heap Overflow Crash Vendor: http://www.apple.com/ Risk : high The "" tag fail to handle long strings, which can lead to a heap overflow in Quicktime/Itunes media player. This bug can be remote or local,...

Flash Player < 8.0.42.0 / 9.0.124.0 Multiple Vulnerabilities (APSB08-11)

According to its version number, the instance of Flash Player on the remote Windows host is affected by multiple issues, including several that could allow for arbitrary code execution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

CVE-2007-6683

The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via 1 the :demuxdump-file option in a filename in a playlist, or 2 a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability...

CVE-2007-6683

The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via 1 the :demuxdump-file option in a filename in a playlist, or 2 a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability...

Design/Logic Flaw

The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via 1 the :demuxdump-file option in a filename in a playlist, or 2 a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability...

CVE-2007-6683

The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via 1 the :demuxdump-file option in a filename in a playlist, or 2 a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability...

CVE-2007-6683

VLC 0.8.6d is affected by CVE-2007-6683 due to insecure argument validation that can allow remote overwriting of files writable by the user when opening a malicious M3U playlist or MP3 with a crafted EXTVLCOPT or demuxdump-file filename. Descriptions across sources (Debian GLSA/DSA, OpenVAS, Gent...

CVE-2007-6683

The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via 1 the :demuxdump-file option in a filename in a playlist, or 2 a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability...

Flash Player < 7.0.73.0 / 9.0.115.0 Multiple Vulnerabilities (APSB07-20)

According to its version number, the instance of Flash Player on the remote Windows host is affected by multiple issues, including several which could allow for arbitrary code execution by means of a malicious SWF file. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Apple QuickTime for Java may allow Java applets to gain elevated privileges

Overview Apple QuickTime for Java contains a vulnerability that may allow a malicious Java applet to gain elevated privileges. Description Apple QuickTime is a media player that includes a browser plugin. QuickTime for Java provides APIs which allow Java developers to include multimedia in Java...

Viewpoint Media Player for IE 3.2 Remote Stack Overflow PoC

No description provided by source. pre codespan style="font: 10pt Courier New;"span class="general1-symbol"body bgcolor="E0E0E0"----------------------------------------------------------------------------- bViewpoint Media Player for IE 3.2 AxMetaStream.dll Remote Stack Overflow/b...

Apple QuickTime remote command execution vulnerability

Overview Apple QuickTime contains a vulnerability that may allow an attacker to pass arbitrary commands to other applications. Description Apple QuickTime is a media player that is available for Microsoft Windows and Apple OS X. Apple QuickTime includes browser plugins for Internet Explorer,...

Disguised as Google Bot breakthrough of the fee website page-bug warning-the black bar safety net

Why some site can be Google search, click on the link to go in after it shows“not registered”and“not a member”? This is a site specifically for the search engine optimization techniques. Then we can also be disguised as a search engine to access these pages. What we need is to modify the browser...

Adobe Reader plug-in AcroPDF.dll 8.0.0.0 Resource Consumption

No description provided by source. ------------------------------------------------------------------------------- Adobe PDF Reader plug-in AcroPDF.dll ver. 8.0.0.0 Resource Consumption author: shinnai mail: shinnaiatautisticidotorg site: http://www.shinnai.altervista.org...

Sun Java JRE vulnerable to privilege escalation

Overview A vulnerability in the Sun Java Runtime Environment may allow a malicious applet to gain elevated privileges. Description The Sun Java Runtime Environment JRE allows users to run Java applications in a browser or as standalone programs. Sun has made the JRE available for multiple operati...