MSCOMCTL.OCX Killbit: bdd1f04b-858b-11d1-b16a-00c0f0283628 (MS12-027; CVE-2012-0158)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in an ActiveX control. To trigger this issue, an attacker can create a malicious web page that initiates the vulnerable ActiveX control. Successful exploitation of this...

Vulnerability in Google Earth Software exposed by longrifle0x

Vulnerability in Google Earth Software exposed by longrifle0x Ucha Gobejishvili, Security researcher also known as Longrifle0x, found another Interesting Security issue in one of the most famous software called, Google Earth. He found a critical code execution vulnerability on google earth softwa...

Microsoft Expression Design Insecure Library Loading (MS12-022; CVE-2012-0016)

A remote code execution vulnerability has been reported in Microsoft Expression Design...

Scientific Toolworks Understand 'wintab32.dll' DLL Loading Arbitrary Code Execution

The version of Scientific Toolworks Understand installed on the remote Windows host is earlier than 2.6 Build 600. As such, it insecurely looks in its current working directory when resolving DLL dependencies, such as for 'wintab32.dll'. Attackers may exploit this issue by placing a specially...

MPlayer SAMI Subtitle sub_read_line_sami Buffer Overflow

MPlayer is an open source multimedia player that runs on numerous operating systems including Linux, Windows and Mac OS X. Ports also exist for Amazon's Kindle, and the Nintendo Wii. It can play many audio and video formats MPEG, DivX, Ogg, etc. and handle various streaming protocols. A code...

Microsoft Windows TCP/IP Stack Reference Counter Overflow (MS11-083; CVE-2011-2013)

A remote code execution vulnerability has been reported in Microsoft Windows TCP/IP stack...

ProFTPD < 1.3.3g / 1.3.4 Response Pool Use-After-Free Code Execution

The remote host is using ProFTPD, a free FTP server for Unix and Linux. According to its banner, the version of ProFTPD installed on the remote host is earlier than 1.3.3g or 1.3.4. As such, it is potentially affected by a code execution vulnerability due to how the server manages the response po...

CVE-2011-3161

HP Data Protector Notebook Extension contains a remote code execution vulnerability in the dpnepolicyservice component (LogBackupLocationStatus method) that accepts unsafely validated input. This flaw is exploitable without authentication via the DPNECentral Web Service on TCP port 80, enabling a...

Remote code execution

Microsoft Forefront Unified Access Gateway UAG 2010 Gold, Update 1, Update 2, and SP1 provides the MicrosoftClient.jar file containing a signed Java applet, which allows remote attackers to execute arbitrary code on client machines via unspecified vectors, aka "Poisoned Cup of Code Execution...

XnView may insecurely load executable files

Overview XnView may use unsafe methods for determining how to load executables .exe XnView is a software for viewing and converting graphic files. XnView loads certain executables when using the "Open containing folder" function. XnView contains an issue with the file search path, which may...

Mozilla Firefox - &#039;nsTreeRange&#039; Dangling Pointer (2)

Advisory : Abysssec Public Exploit : This module exploits a code execution vulnerability in Mozilla Firefox = 3.6.16 caused by nsTreeSelection element. The specific flaw exists within the way Firefox handles user defined functions of a nsTreeSelection element. When executing the function...

PHP code execution vulnerability references summary-vulnerability warning-the black bar safety net

A code execution function In PHP you can execute the Code of the function. Such as eval , assert , theand system and exec and shellexec and passthru and escapeshellcmd and pcntlexec , etc. demo code 1.1: The second file contains the code injection The file containing the function in the specific...

Adobe Flash Player Arbitrary Code Execution Vulnerability (Linux)

This host has Adobe flash Player installed, and is prone to code execution vulnerability. OpenVAS Vulnerability Test $Id: gbadobeflashplayercodeexecutionvulnapr11lin.nasl 5424 2017-02-25 16:52:36Z teissa $ Adobe Flash Player Arbitrary Code Execution Vulnerability Linux Authors: Antu Sanadi...

Oracle Java SE Code Execution Vulnerability (Windows)

This host is installed with Sun Java SE and is prone to code execution vulnerability. OpenVAS Vulnerability Test $Id: secpodoraclejavacodeexecvulnwin.nasl 7699 2017-11-08 12:10:34Z santu $ Oracle Java SE Code Execution Vulnerability Windows Authors: Madhuri D Copyright: Copyright c 2011 SecPod,...

KLA12360 ACE vulnerability in Microsoft Windows

Code execution vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability in Human Interface Device HID to execute arbitrary code. Original advisories CVE-2011-0638 Related products Microsoft-Windows-Vista Microsoft-Windows-Server-2012 Microsoft-Windows-8...

Unrestricted file upload

Unrestricted file upload vulnerability in the Document Conversions Launcher Service in Microsoft Office SharePoint Server 2007 SP2, when the Document Conversions Load Balancer Service is enabled, allows remote attackers to execute arbitrary code via a crafted SOAP request to TCP port 8082, aka...

CVE-2010-3964

CVE-2010-3964 is an unrestricted file upload vulnerability in the Document Conversions Launcher Service of Microsoft Office SharePoint Server 2007 SP2, exploitable when the Document Conversions Load Balancer Service is enabled. A crafted SOAP request to TCP 8082 can lead to remote code execution ...

Microsoft Windows ICSW Remote Code Execution Vulnerability (2443105)

This host is missing a critical security update according to Microsoft Bulletin MS10-097. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Adobe Products Content Code Execution Vulnerability (Windows)

This host has Adobe Acrobat or Adobe Reader or Adobe flash Player installed, and is prone to arbitrary code execution vulnerability. OpenVAS Vulnerability Test $Id: gbadobeprdtsarbitrarycodeexecvulnnov10win.nasl 8210 2017-12-21 10:26:31Z cfischer $ Adobe Products Arbitrary Code Execution...

CVE-2010-4096

share/ma/keysforuser in Monkeysphere 0.31 and 0.32 allows local users to execute arbitrary code via unknown manipulations related to the "monkeysphere-authentication keys-for-user" command...