CVE-2009-0202

Array index error in FL21WIN.DLL in the PowerPoint Freelance Windows 2.1 Translator in Microsoft PowerPoint 2000 and 2002 allows remote attackers to execute arbitrary code via a Freelance file with unspecified "layout information" that triggers a heap-based buffer overflow...

CVE-2009-0230

The Windows Print Spooler in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 allows remote authenticated users to gain privileges via a crafted RPC message that triggers loading of a DLL file from an arbitrary directory, aka "Print Spoole...

VulnCheck KEV: CVE-2009-1612

Stack-based buffer overflow in the MPS.StormPlayer.1 ActiveX control in mps.dll 3.9.4.27 in Baofeng Storm allows remote attackers to execute arbitrary code via a long argument to the OnBeforeVideoDownload method, as exploited in the wild in April and May 2009. NOTE: some of these details are...

Manual crack fast flash reduction-vulnerability warning-the black bar safety net

Information source: evil octal information security team www.eviloctal.com） Article author: monsterok（monster） Go to the cafe Internet, I downloaded a half-day things, can let I accidentally put the computer the power to kick, because the cafe machine is installed restore, reboot after everything...

Microsoft Internet Explorer 8 Beta 1 - 'ieframe.dll' Script Injection

source: https://www.securityfocus.com/bid/28581/info Microsoft Internet Explorer is prone to a script-injection vulnerability when handling specially crafted requests to 'acrerror.htm' via the 'res://' protocol. The file resides in the 'ieframe.dll' dynamic-link library. An attacker may leverage...

Verity KeyView SDK Multiple File Format Parsing Vulnerabilities

Several vulnerabilities exist in the popular Verity KeyView SDK used in many enterprise applications like IBM Lotus Notes. When parsing several different file formats a standard stack overflow occurs allowing a malicious user to gain complete control of the affected machine under the rights of th...

Command line install of SERV-U-vulnerability warning-the black bar safety net

Serv-U, A in the windows System use a very wide range offtp server, which is a pity, it is not a remote installation feature it's okay, hand the remote to install it, it is fun ^^ Serv-U the latest version as far as I know, is 4. 0. Note, be sure to use the latest version. The original version of...

The Windows in the DLL Files the basic principle and modified method-vulnerability warning-the black bar safety net

A DLL file is common sense DLL is a Dynamic Link Library acronym meaning Dynamic Link Library. In Windows, many applications are not a complete executable file, which is divided into a number of relatively independent Dynamic Link Library that DLL file, placed in the system. When we execute a...

CVE-2005-0770

Format string vulnerability in DataRescue Interactive Disassembler and Debugger IDA Pro 4.7.0.830 allows remote attackers or local users to cause a denial of service CPU consumption or application crash and possibly execute arbitrary code via format string specifiers in a dynamic link library DLL...

ADVISORY: DataRescue Interactive Disassembler Pro Debugger Format String Vulnerability

DataRescue Interactive Disassembler Pro Debugger Format String Vulnerability by Piotr Bania [email protected] http://pb.specialised.info Severity: High / Medium - code execution. Versions affected: Probably all versions, however tested on 4.7.0.830. I. BACKGROUND "The IDA Pro Disassembler and...

Security Update for Expression Design 2 (KB2667725)

This security update resolves a vulnerability in Microsoft Expression Design which could allow remote code execution if a user opens a legitimate file located in the same network directory as a specially crafted dynamic link library DLL file...

Security Update for Expression Design 1 (KB2675064)

This security update resolves a vulnerability in Microsoft Expression Design which could allow remote code execution if a user opens a legitimate file located in the same network directory as a specially crafted dynamic link library DLL file...