4205 matches found
ms03-046.pl
On October 15th, Microsoft released an advisory stating that both Exchange 5.5 and Exchange 2000 were vulnerable to a denial of service attack in the code which processes extended verb requests. This advisory also stated that Exchange 2000 was vulnerable to a buffer overrun that would allow a...
Musicqueue 0.91.01.1 - Multiple Buffer Overrun Vulnerabilities
Musicqueue 0.91.01.1 - Multiple Buffer Overrun Vulnerabilities // source: https://www.securityfocus.com/bid/8903/info Multiple buffer overrun vulnerabilities have been discovered in Musicqueue. Both issues stem from the lack of bounds checking when passing user-supplied input to the sprintf libc...
Yahoo! Messenger 5.6 - File Transfer Buffer Overrun
source: Yahoo! Messenger File Transfer Buffer Overrun Vulnerability Yahoo! Messenger is prone to a remotely exploitable buffer overrun vulnerability. An attacker may trigger this condition by initiating a malformed 'sendfile' request, which the victim user must then accept. This will reportedly...
Yahoo! Messenger 5.6 - File Transfer Buffer Overrun
Yahoo! Messenger 5.6 - File Transfer Buffer Overrun source: Yahoo! Messenger File Transfer Buffer Overrun Vulnerability Yahoo! Messenger is prone to a remotely exploitable buffer overrun vulnerability. An attacker may trigger this condition by initiating a malformed 'sendfile' request, which the...
Musicqueue 0.9/1.0/1.1 - Multiple Buffer Overrun Vulnerabilities
// source: https://www.securityfocus.com/bid/8903/info Multiple buffer overrun vulnerabilities have been discovered in Musicqueue. Both issues stem from the lack of bounds checking when passing user-supplied input to the sprintf libc function. As a result, it may be possible for an attacker to...
Microsoft Windows XP2000 - Messenger Service Buffer Overrun (MS03-043)
Microsoft Windows XP2000 - Messenger Service Buffer Overrun MS03-043 // source: https://www.securityfocus.com/bid/8826/info Microsoft Windows Messenger Service is prone to a remotely exploitable buffer overrun vulnerability. This is due to insufficient bounds checking of messages before they are...
Microsoft Windows XP/2000 - Messenger Service Buffer Overrun (MS03-043)
// source: https://www.securityfocus.com/bid/8826/info Microsoft Windows Messenger Service is prone to a remotely exploitable buffer overrun vulnerability. This is due to insufficient bounds checking of messages before they are passed to an internal buffer. Exploitation could result in a denial o...
MS03-046 Microsoft Exchange 2000 Heap Overflow
On October 15th, Microsoft released an advisory stating that both Exchange 5.5 and Exchange 2000 were vulnerable to a denial of service attack in the code which processes extended verb requests. This advisory also stated that Exchange 2000 was vulnerable to a buffer overrun that would allow a...
Opera 7.117.20 HREF - Malformed Server Name Heap Corruption
Opera 7.117.20 HREF - Malformed Server Name Heap Corruption source: https://www.securityfocus.com/bid/8853/info A vulnerability has been discovered in the Opera web browser that could lead to remote code execution. The problem is said to trigger when handling malformed HTML HREF values and may...
Opera 7.11/7.20 HREF - Malformed Server Name Heap Corruption
source: https://www.securityfocus.com/bid/8853/info A vulnerability has been discovered in the Opera web browser that could lead to remote code execution. The problem is said to trigger when handling malformed HTML HREF values and may result in a buffer overrun occuring within heap memory. As a...
Microsoft Security Bulletin MS03-04
Microsoft Security Bulletin MS03-044 Buffer Overrun in Windows Help and Support Center Could Lead to System Compromise 825119 Issued: October 15, 2003 Version Number: 1.0 Summary Who Should Read This Document: Customers using Microsoft® Windows® Impact of Vulnerability: Remote Code Execution...
Microsoft Security Bulletin MS03-045
Microsoft Security Bulletin MS03-045 Buffer Overrun in the ListBox and in the ComboBox Control Could Allow Code Execution 824141 Issued: October 15, 2003 Version Number: 1.0 Summary Who Should Read This Document: Customers using Microsoft® Windows® Impact of Vulnerability: Local Elevation of...
MS03-043: Buffer Overrun in Messenger Service (828035) (uncredentialed check)
A security vulnerability exists in the Messenger Service that could allow arbitrary code execution on an affected system. An attacker who successfully exploited this vulnerability could be able to run code with Local System privileges on an affected system or could cause the Messenger Service to...
Microsoft Windows Messenger Service Buffer Overrun Vulnerability
Description Microsoft Windows Messenger Service is prone to a remotely exploitable buffer overrun vulnerability. This is due to insufficient bounds checking of messages before they are passed to an internal buffer. Exploitation could result in a denial of service or in execution of malicious code...
Microsoft ListBoxComboBox Control - User32.dll Buffer Overrun
Microsoft ListBoxComboBox Control - User32.dll Buffer Overrun source: https://www.securityfocus.com/bid/8827/info Microsoft has reported the existence of a local buffer overrun vulnerability in an undisclosed User32.dll library function. This function is used by applications implementing the use ...
Microsoft ListBox/ComboBox Control - 'User32.dll' Buffer Overrun
source: https://www.securityfocus.com/bid/8827/info Microsoft has reported the existence of a local buffer overrun vulnerability in an undisclosed User32.dll library function. This function is used by applications implementing the use of ListBox or ComboBox controls and will be triggered when the...
MS03-045: Buffer Overrun in the ListBox and in the ComboBox (824141)
A vulnerability exists because the ListBox control and the ComboBox control both call a function, located in the User32.dll file, that contains a buffer overrun. A local, interactive attacker could run a program that sends a specially crafted Windows message to any application that has implemente...
MS03-043: Buffer Overrun in Messenger Service (828035)
The remote version of Windows contains a Heap Overflow in the Messenger service that could allow an attacker to execute arbitrary code on the remote host with the SYSTEM privileges. A series of worms Gaobot, Agobot, ... are known to exploit this vulnerability in the wild. C Tenable Network...
MS03-023: Buffer Overrun In HTML Converter Could Allow Code Execution (823559)
The remote host contains a version of the HTML Converter module that could allow an attacker to execute arbitrary code on the remote host by constructing a malicious web page and enticing a victim to visit this web page. C Tenable Network Security, Inc. include"compat.inc"; if description...
Silly Poker 0.25.5 - Local HOME Environment Variable Buffer Overrun
Silly Poker 0.25.5 - Local HOME Environment Variable Buffer Overrun // source: https://www.securityfocus.com/bid/8736/info A local buffer overrun vulnerability has been reported for Silly Poker. The problem occurs due to insufficient bounds checking when handling user-supplied data. As a result, ...