fsi.ulaval.ca Cross Site Scripting vulnerability OBB-2537158

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Researchers Outline New Italian RAT uWarrior

Details have come to light about a new remote access Trojan called uWarrior that arrives embedded in a rigged .RTF document. Researchers with Palo Alto Networks’ research division, Unit 42, described the malware and how it appears to have emanated from an “unknown actor of Italian origin,” in a...

CVE-2012-1856

creationtimestamp| type| source ---|---|--- 2015-08-25 09:05:05+00:00| seen| MISP/55dc2f59-7238-468a-8956-575e950d210b 2016-02-08 10:35:40+00:00| seen| MISP/56b86d69-3b0c-465d-8eb3-0e57bce2ab96 2016-04-18 19:30:24+00:00| seen| MISP/57153590-f73c-49fa-be4b-4737950d210f 2017-03-23 16:13:41+00:00|...

Microsoft Windows Common Controls Remote Code Execution - Ver2 (CVE-2012-1856)

A code execution vulnerability has been reported in the Windows Common Controls. The vulnerability is due to a corruption of the system state by the TabStrip ActiveX control. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected syst...

VUPEN - Microsoft Windows Common Controls MSCOMCTL.OCX Use-after-free (CVE-2012-1856 / MS12-060)

VUPEN Security Research - Microsoft Windows Common Controls MSCOMCTL.OCX Use-after-free CVE-2012-1856 / MS12-060 Website : http://www.vupen.com/english/research.php Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- Microsoft Windows is a series of software operating systems a...

CVE-2012-1856

The TabStrip ActiveX control in the Common Controls in MSCOMCTL.OCX in Microsoft Office 2003 SP3, Office 2003 Web Components SP3, Office 2007 SP2 and SP3, Office 2010 SP1, SQL Server 2000 SP4, SQL Server 2005 SP4, SQL Server 2008 SP2, SP3, R2, R2 SP1, and R2 SP2, Commerce Server 2002 SP4, Commerc...

CVE-2012-1856

The TabStrip ActiveX control in the Common Controls in MSCOMCTL.OCX in Microsoft Office 2003 SP3, Office 2003 Web Components SP3, Office 2007 SP2 and SP3, Office 2010 SP1, SQL Server 2000 SP4, SQL Server 2005 SP4, SQL Server 2008 SP2, SP3, R2, R2 SP1, and R2 SP2, Commerce Server 2002 SP4, Commerc...

MS12-060: Vulnerability in Windows Common Controls Could Allow Remote Code Execution (2720573)

There is an unspecified remote code execution vulnerability in Windows common controls, which is included in several Microsoft products. An attacker could exploit this by tricking a user into viewing a maliciously crafted web page, resulting in arbitrary code execution. %NASLMINLEVEL 70300 C...

Microsoft Windows Common Controls Remote Code Execution Vulnerability (2720573)

This host is missing a critical security update according to Microsoft Bulletin MS12-060. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Windows Common Controls ActiveX Control CVE-2012-1856 Remote Code Execution Vulnerability

Description Microsoft Windows Common Controls is prone to a remote code-execution vulnerability. An attacker can exploit this issue by enticing an unsuspecting user to view a malicious webpage. Successful exploits will allow the attacker to execute arbitrary code within the context of the...

Microsoft Windows Common Controls Remote Code Execution (MS12-060; CVE-2012-1856)

A remote code execution vulnerability has been reported in the Windows common controls...