157 matches found
CVE-2010-2637
IBM WebSphere MQ 6.0 before 6.0.2.9 and 7.0 before 7.0.1.1 does not encrypt the username and password in the security parameters field, which allows remote attackers to obtain sensitive information by sniffing the network traffic from a .NET client application...
X.Org X11R7 memory corruption
Memory corruption on client application request processing...
RedHat Security Advisory RHSA-2009:0261
The remote host is missing updates announced in advisory RHSA-2009:0261. Virtual Network Computing VNC is a remote display system which allows you to view a computer's desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of...
RedHat Security Advisory RHSA-2009:0261
The remote host is missing updates announced in advisory RHSA-2009:0261. Virtual Network Computing VNC is a remote display system which allows you to view a computer SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...
CVE-2007-6018
IMP Webmail Client 4.1.5, Horde Application Framework 3.1.5, and Horde Groupware Webmail Edition 1.0.3 does not validate unspecified HTTP requests, which allows remote attackers to 1 delete arbitrary e-mail messages via a modified numeric ID or 2 "purge" deleted emails via a crafted email message...
Multiple applications Unicode Full Width / Half Width characters protection bypass
Client application may support translation of Halfwidth/Fullwidth Unicode characters unicode FF00 - FFEE, while content filter doesn't...
Network protocols security: View from client side
Security of Common Application Network Protocols: A Client's Perspective Having received an offer to write an article about the security of network protocols and their vulnerabilities, at first I wanted to refuse - it seems that everything that can be written on this topic has already been writte...
Cryptomathic - ActiveX Control Remote Buffer Overflow
Cryptomathic - ActiveX Control Remote Buffer Overflow source: https://www.securityfocus.com/bid/17852/info Cryptomathic ActiveX control is prone to a buffer-overflow vulnerability. The software fails to perform sufficient bounds-checking of user-supplied input before copying it to an insufficient...
Multiple firewalls protection bypass
The number of different way to break protection against client application attacks is almost unlimited...
Isemarket JaguarControl - ActiveX Control Buffer Overflow
source: https://www.securityfocus.com/bid/14558/info Isemarket JaguarControl ActiveX control is prone to a buffer overflow. This could result in a failure of the client application invoking the control or potentially execution of arbitrary code. !-- msgbox"XXXXXXX BANKASI GUVENLIK KALKANI...
Mtp-Target 1.2.2 Client - Remote Format String
Mtp-Target 1.2.2 Client - Remote Format String source: https://www.securityfocus.com/bid/13460/info A remote format string vulnerability affects Mtp-Target Client. This issue is due to a failure of the application to securely call a formatted printing function. An attacker may leverage this issue...
Techland XPand Rally 1.0/1.1 - Remote Format String
source: https://www.securityfocus.com/bid/12772/info A remote format string vulnerability affects XPand Rally. This issue is due to a failure of the application to securely call a formatted printing function. An attacker may leverage this issue to execute arbitrary code with the privileges of an...
foxmailDoS.txt
DATE: 02/04/2005 AUTHOR: Fortinet, inc xouyang PRODUCTS: Foxmail Server- A MAil server for both Windows and linux. AFFECTED VERSION: Foxmail server for windows version 2.0Newest.I just test windows server ,maybe linux version have vulnerability too. Description: Foxmail-the Email client applicati...
Выполнение кода через Gator (code execution)
Устанавливается ActiveX компонент через который можно загрузить и выполнить приложение на клиентском компьютере...
CVE-1999-1124
HTTP Client application in ColdFusion allows remote attackers to bypass access restrictions for web pages on other ports by providing the target page to the mainframeset.cfm application, which requests the page from the server, making it look like the request is coming from the local host...
Локальный DoS против Windows
Открытие большого числа datagram-сокетов в клиентском приложении приводит к невозможности работать с UDP Включая разрешение имен...
Dynamics CRM 2013 Polish Client i386
Dynamics CRM 2013 Polish Client i386...