Lucene search
K

153 matches found

CVE
CVE
added 2010/03/31 7:0 p.m.105 views

CVE-2010-0805

CVE-2010-0805 is an actively discussed vulnerability affecting the Internet Explorer Tabular Data Control ActiveX. The issue arises when a long DataURL parameter triggers a memory corruption inside CTDCCtl::SecurityCHeckDataURL, enabling remote code execution. Public material in connected docs co...

9.3CVSS7.5AI score0.80603EPSS
Exploits13References9Affected Software2
0day.today
0day.today
added 2009/09/25 12:0 a.m.18 views

html2ps 'include file' Server Side Include Directive Directory Traversal

Exploit for unknown platform in category web applications ======================================================================== html2ps 'include file' Server Side Include Directive Directory Traversal Vulnerability ========================================================================...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/09/25 12:0 a.m.33 views

html2ps - 'include file' Server-Side Include Directive Directory Traversal

!/usr/bin/env python html2ps the "include file" ssi directive doesn't check for directory traversal so you can include and disclose any file in the dir tree very handy when html2ps is running as a part of a web app with data that you control the vuln requires that "ssi" in the @html2ps block in t...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2009/09/24 12:0 a.m.32 views

html2ps 1.0 beta5 File Disclosure

!/usr/bin/env python html2ps the "include file" ssi directive doesn't check for directory traversal so you can include and disclose any file in the dir tree very handy when html2ps is running as a part of a web app with data that you control the vuln requires that "ssi" in the @html2ps block in t...

7.4AI score
Exploits0
NVD
NVD
added 2008/12/11 3:30 p.m.24 views

CVE-2008-4844

Use-after-free vulnerability in the CRecordInstance::TransferToDestination function in mshtml.dll in Microsoft Internet Explorer 5.01, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via DSO bindings involving 1 an XML Island, 2 XML DSOs, or 3 Tabular Data Control TDC in a craft...

9.3CVSS7.2AI score0.66513EPSS
Exploits10References21
CVE
CVE
added 2008/12/11 3:0 p.m.285 views

CVE-2008-4844

CVE-2008-4844 is a use-after-free vulnerability in the MSHTML component (CRecordInstance::TransferToDestination) of mshtml.dll that affects Internet Explorer 5.01/6/6 SP1/7. Exploitation enables remote code execution via crafted HTML/XML containing DSO bindings (XML Island, XML DSOs, or Tabular D...

9.3CVSS7.5AI score0.66513EPSS
Exploits10References21Affected Software1
Cvelist
Cvelist
added 2008/12/11 3:0 p.m.21 views

CVE-2008-4844

Use-after-free vulnerability in the CRecordInstance::TransferToDestination function in mshtml.dll in Microsoft Internet Explorer 5.01, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via DSO bindings involving 1 an XML Island, 2 XML DSOs, or 3 Tabular Data Control TDC in a craft...

7.6AI score0.66513EPSS
Exploits10References21
VulnCheck KEV
VulnCheck KEV
added 2008/12/11 12:0 a.m.4 views

VulnCheck KEV: CVE-2008-4844

Use-after-free vulnerability in the CRecordInstance::TransferToDestination function in mshtml.dll in Microsoft Internet Explorer 5.01, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via DSO bindings involving 1 an XML Island, 2 XML DSOs, or 3 Tabular Data Control TDC in...

9.3CVSS6.2AI score0.66513EPSS
Exploits10References1
RedHat Linux
RedHat Linux
added 2008/01/21 9:34 a.m.4 views

Wireshark loops infinitely when inspecting DCP ETSI traffic

Wireshark 0.99.5 allows remote attackers to cause a denial of service memory consumption via a malformed DCP ETSI packet that triggers an infinite loop...

7.8CVSS5.9AI score0.02255EPSS
Exploits1References4
Check Point Advisories
Check Point Advisories
added 2007/02/28 12:0 a.m.2 views

Oracle Data ORADC ActiveX Control Remote Code Execution

A vulnerability has been identified in the Oracle Data Control ORADC ActiveX control.The ORADC ActiveX control is provided by the Oracle Objects for OLE package. It provides data access and operation modifications on the backend database.A remote attacker could execute arbitrary code on the...

8.2AI score
Exploits0
securityvulns
securityvulns
added 2005/12/20 12:0 a.m.27 views

[Full-disclosure] Symantec Antivirus Library Remote Heap Overflows

Date December 20, 2005 Vulnerability The Symantec Antivirus Library provides file format support for virus analysis. During decompression of RAR files Symantec is vulnerable to multiple heap overflows allowing attackers complete control of the systems being protected. These vulnerabilities can be...

1.5AI score
Exploits0
Packet Storm
Packet Storm
added 2005/06/01 12:0 a.m.17 views

ecart11.txt

------=Part73424926651.1114105332381 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/04/25 12:0 a.m.26 views

E-Cart v1.1 Remote Command Execution

============================================================ Title: E-Cart v1.1 Remote Command Execution Vulnerability discovery: SoulBlack - Security Research - http://soulblack.com.ar Date: 20/04/2005 Severity: High. Remote Users Can Execute Arbitrary Code. Affected version: = E-Cart 2004 v1.1...

2.2AI score
Exploits0
Rows per page
Query Builder