218 matches found
Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)
No description provided by source. MSODataSourceControl.DeleteRecordSourceIfUnused COM-object B0F POC Tested on full patched XP/SP2, IE7, MSO2003 html object id=ctl classid="clsid:0002E55B-0000-0000-C000-000000000046"/object script language="javascript" var b = 'AAAA'; while b.length = 256 b+=b;...
Microsoft Office - MSODataSourceControl COM-object Buffer Overflow (PoC)
Microsoft Office - MSODataSourceControl COM-object Buffer Overflow PoC MSODataSourceControl.DeleteRecordSourceIfUnused COM-object B0F POC Tested on full patched XP/SP2, IE7, MSO2003 var b = 'AAAA'; while b.length milw0rm.com 2007-06-13...
iDefense Security Advisory 06.12.07: Microsoft License Manager and urlmon.dll COM Object Interaction Invalid Memory Access Vulnerability
Microsoft License Manager and urlmon.dll COM Object Interaction Invalid Memory Access Vulnerability iDefense Security Advisory 06.12.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 12, 2007 I. BACKGROUND Internet Explorer is a set of core technologies in Microsoft Windows operating...
CVE-2007-0218
CVE-2007-0218 affects Microsoft Internet Explorer 5.01, 6, and 7. The vulnerability arises when IE instantiates certain COM objects from urlmon.dll, causing memory corruption during IObjectSafety calls and enabling remote code execution. Microsoft’s MS07-033 security update mitigates this by upda...
Microsoft Internet Explorer Speech API 4 COM Object Instantiation Buffer Overflow Vulnerabilities
Description Microsoft Internet Explorer is prone to multiple buffer-overflow vulnerabilities when instantiating certain COM objects. An attacker may exploit these issues by enticing victims into opening a maliciously crafted webpage. Successfully exploiting these issues allows remote attackers to...
CVE-2005-4845
CVE-2005-4845 concerns the Java Plug-in versions 1.4.2_03 and 1.4.2_04, including the associated applet redirector controls. The issue is that creating a COM object linked to the control’s CLSID (not intended for use within Internet Explorer) can crash Internet Explorer, resulting in a denial of ...
CVE-2005-4842
The CVE-2005-4842 entry describes a vulnerability in the System Monitor Source Properties control that can cause a denial-of-service (Internet Explorer crash) when a remote attacker creates a COM object of the control’s CLSID, which IE does not intend to use. Multiple sources (NVD, CVE list, Red ...
CVE-2005-4842
The System Monitor Source Properties control allows remote attackers to cause a denial of service Internet Explorer crash by creating a COM object of the class associated with the control's CLSID, which is not intended for use within Internet Explorer...
CVE-2005-4843
The CVE-2005-4843 vulnerability affects the SmartConnect Class control. It allows remote attackers to cause an Internet Explorer crash by creating a COM object of the control’s CLSID that is not intended for use within Internet Explorer. The issue is described across multiple sources (Red Hat, CV...
CVE-2005-4841
Technical details about CVE-2005-4841 are not publicly available in the provided documents. Monitor for updates from Red Hat, NVD, CVE listings, and related advisories.
LeadTools JPEG 2000 - COM Object Remote Stack Overflow
2007/05/18 ----------------------------------------------------------------------------------------------- LeadTools JPEG 2000 COM Objejct LTJ2K14.ocx v. 14.5.0.35 Remote Stack-Based Buffer Overflow url: http://www.leadtools.com/ peice: eheheh, take a look at thier site : author: shinnai mail:...
iDefense Security Advisory 05.08.07: McAfee Security Center IsOldAppInstalled ActiveX Buffer Overflow Vulnerability
McAfee Security Center IsOldAppInstalled ActiveX Buffer Overflow Vulnerability iDefense Security Advisory 05.08.07 http://labs.idefense.com/intelligence/vulnerabilities/ May 08, 2007 I. BACKGROUND McAfee Security Center is a centralized configuration GUI utilized to control and monitor McAfee...
Code injection
Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on Windows 2000 SP4; 6 and 7 on Windows XP SP2, or Windows Server 2003 SP1 or SP2; and possibly 7 on Windows Vista does not properly "instantiate certain COM objects as ActiveX controls," which allows remote attackers to execute...
Arbitrary file deletion
Unspecified vulnerability in the mdsauth.dll COM object in Microsoft Windows Media Server in the Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on Windows 2000 SP4; 6 and 7 on Windows XP SP2, or Windows Server 2003 SP1 or SP2; or 7 on Windows Vista allows remote attackers to...
CVE-2007-2221
CVE-2007-2221 corresponds to a vulnerability in the mdsauth.dll ActiveX control used by Microsoft Windows Media Services within Internet Explorer. The mdsauth.dll COM object can be instantiated via IE, enabling an attacker to overwrite arbitrary files on a vulnerable system, potentially allowing ...
Internet Explorer IMJPCKSI COM对象实例化内存破坏漏洞(MS07-016)
Internet Explorer是微软发表的非常流行的WEB浏览器。 Internet Explorer使用某些Imjpcksid.dll的COM对象作为ActiveX控件。攻击者可能通过构建特制网页来利用此漏洞,如果用户查看了该网页,则可能允许远程执行代码。成功利用此漏洞的攻击者可以完全控制受影响的系统。 Microsoft Internet Explorer 7.0 Microsoft Internet Explorer 6.0 SP1 Microsoft Internet Explorer 6.0 Microsoft Internet Explorer 5.0.1 SP4...
Microsoft Internet Explorer多个COM对象颜色属性拒绝服务漏洞
Internet Explorer是微软发布的非常流行的WEB浏览器。 Internet Explorer在处理多个COM对象(dxtmsft.dll/dxtmsft3.dll)的颜色属性输入方式时,如果将颜色属性设置为超长字符串的话,就会导致Internet Explorer崩溃。 Microsoft Internet Explorer 6.0 SP1 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.microsoft.com/windows/ie/default.asp ===============...
Microsoft Windows 2000多个COM对象实例化内存破坏漏洞
Microsoft Windows是微软发布的非常流行的操作系统。 在Windows 2000上当Internet Explorer试图将ciodm.dll、MyInfo.dll、msdxm.ocx、Creator.dll(Media player 9)COM对象实例化为ActiveX控件时,就可能破坏系统内存,导致拒绝服务或执行任意代码。 Microsoft Internet Explorer 6.0 SP1 - Microsoft Windows 2000 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
Microsoft IE IMSKDIC.DLL COM对象实例化拒绝服务漏洞
Internet Explorer是微软发布的非常流行的WEB浏览器。 Internet Explorer在试图将IMSKDIC.DLL(Microsoft IME)COM对象实例化为ActiveX控件时可能会破坏系统内存,导致拒绝服务。 Microsoft Internet Explorer 6.0 SP2 Microsoft Internet Explorer 6.0 SP1 Microsoft Internet Explorer 6.0 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
Microsoft IE CHTSKDIC.DLL COM对象实例化拒绝服务漏洞
Internet Explorer是微软发布的非常流行的WEB浏览器。 Internet Explorer在试图将CHTSKDIC.DLL(Microsoft IME)COM对象实例化为ActiveX控件时可能会破坏系统内存,导致拒绝服务。 Microsoft Internet Explorer 6.0 SP2 Microsoft Internet Explorer 6.0 SP1 Microsoft Internet Explorer 6.0 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...