Microsoft DirectX SAMI File Parsing Stack Buffer Overflow Vulnerability

Description DirectX is prone to a stack-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data An attacker could exploit this issue to execute arbitrary code within the privileges of the currently logged-in user. Failed exploit...

Microsoft DirectX WAV and AVI File Parsing Remote Code Execution Vulnerability

Description Microsoft DirectX is prone to a remote code-execution vulnerability. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts may crash the application. Technologies Affected Avaya Messaging Application...

Microsoft Windows URI Handler Command Execution Vulnerability

Description Microsoft Windows XP and Server 2003 with Internet Explorer 7 is prone to a command-execution vulnerability because it fails to properly sanitize input. Successfully exploiting this issue allows remote attackers to execute arbitrary commands in the context of users that follow malicio...

Microsoft Internet Explorer URLMON.DLL COM Object Instantiation Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to remote code-execution vulnerability. A remote attacker can exploit this issue to execute arbitrary code in the context of the user running the vulnerable application. Technologies Affected Avaya CIE 1.0 Avaya Messaging Application Server Avaya...

Microsoft Internet Explorer CSS Tag Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability because the application fails to properly handle certain CSS data. A remote attacker can exploit this issue to execute arbitrary code in the context of the user running the vulnerable application. Technologi...

Microsoft Internet Explorer Language Pack Installation Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to remote code-execution vulnerability because of a race-condition in its language-pack installation support. A remote attacker can exploit this issue to execute arbitrary code in the context of the user running the vulnerable application...

Microsoft Internet Explorer Source Element Cross-Domain Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to an information-disclosure vulnerability because it fails to properly enforce cross-domain policies. This issue may allow attackers to access arbitrary websites in the context of a targeted user's browser session. This may allow attackers to...

Microsoft Internet Explorer Chained Cascading Style Sheets Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to remote code-execution vulnerability. This issue is related to how the browser handles chained CSS Cascading Style Sheets. An attacker could exploit this issue to execute arbitrary code in the context of the user visiting a malicious web page. Th...

Microsoft Internet Explorer HTML Layout and Positioning Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. This vulnerability is related to how the browser renders HTML with certain layout and positioning combinations. An attacker could exploit this issue to execute arbitrary code in the context of the user...

Microsoft Internet Explorer Javaprxy.DLL COM Object Instantiation Heap Overflow Vulnerability

Description Microsoft Internet Explorer is prone to a heap-based buffer-overflow vulnerability that occurs when the 'javaprxy.dll' COM object is instantiated by a malicious webpage. Attackers may exploit this issue to execute arbitrary code in the context of the client. Technologies Affected...