6673 matches found
Design/Logic Flaw
The InstallProduct routine in the Verisign VUpdater.Install aka i-Nav ActiveX control does not verify Microsoft Cabinet .CAB files, which allows remote attackers to run an arbitrary executable file...
CVE-2006-2318
Incomplete blacklist vulnerability in Ideal Science Ideal BB 1.5.4a and earlier allows remote attackers to upload and execute an ASP script via a ".asa" file, which bypasses the check for the ".asp" extension but is executable on the server...
CVE-2006-1736
Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to trick users into downloading and saving an executable file via an image that is overlaid by a transparent image link that points to the executable, which causes...
Design/Logic Flaw
Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to trick users into downloading and saving an executable file via an image that is overlaid by a transparent image link that points to the executable, which causes...
CVE-2006-1736
Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to trick users into downloading and saving an executable file via an image that is overlaid by a transparent image link that points to the executable, which causes...
CVE-2006-1736
Technical details (affected product/version/root cause/impact) are not publicly provided in the connected documents. Monitor for updates.
Downloading executables with "Save Image As..." — Mozilla
By layering a transparent image link to an executable on top of a visible and presumably desirable image a malicious site might be able to convince some visitors to right-click and choose "Save image as..." from the context menu and fool them by giving them the executable instead. When the users...
CVE-2006-1539
Multiple buffer overflows in the checkscores function in scores.c in tetris-bsd in bsd-games before 2.17-r1 in Gentoo Linux might allow local users with games group membership to gain privileges by modifying tetris-bsd.scores to contain crafted executable content, which is executed when another...
CVE-2006-1539
Multiple buffer overflows in the checkscores function in scores.c in tetris-bsd in bsd-games before 2.17-r1 in Gentoo Linux might allow local users with games group membership to gain privileges by modifying tetris-bsd.scores to contain crafted executable content, which is executed when another...
CVE-2006-1539
Multiple buffer overflows in the checkscores function in scores.c in tetris-bsd in bsd-games before 2.17-r1 in Gentoo Linux might allow local users with games group membership to gain privileges by modifying tetris-bsd.scores to contain crafted executable content, which is executed when another...
CVE-2006-1539
Multiple buffer overflows in the checkscores function in scores.c in tetris-bsd in bsd-games before 2.17-r1 in Gentoo Linux might allow local users with games group membership to gain privileges by modifying tetris-bsd.scores to contain crafted executable content, which is executed when another...
CVE-2006-1539
Multiple buffer overflows in the checkscores function in scores.c in tetris-bsd in bsd-games before 2.17-r1 in Gentoo Linux might allow local users with games group membership to gain privileges by modifying tetris-bsd.scores to contain crafted executable content, which is executed when another...
Code injection
Trend Micro PC-cillin Internet Security 2006 14.00.1485 and 14.10.0.1023, uses insecure DACLs for critical files, which allows local users to gain SYSTEM privileges by modifying executable programs such as 1 tmntsrv.exe and 2 tmproxy.exe...
PT-2006-2390 · Trend Micro · Trend Micro Officescan
Name of the Vulnerable Software and Affected Versions: Trend Micro OfficeScan versions prior to 6.5 Description: The issue allows local users to gain SYSTEM privileges by modifying the tmlisten.exe file due to insecure DACLs used for critical files. Recommendations: For versions prior to 6.5,...
Multiple Firebird vulnerabilities
Few executable files are installed suid firebird, one of them has buffer overflow...
Fedora Core 4 : kernel-2.6.15-1.1833_FC4 (2006-131)
This update rebases to the latest -stable release 2.6.15.5, which fixes a number of security problems. - sysmbind failed to sanity check its arguments, leading to a potential local DoS. - A specially crafted ELF executable could cause Intel EM64T boxes to crash. CVE-2006-0741 - Normal users could...
Hauri Virobot antivirus privilege esalation
Local user can obtain unrestricted access with suid CGI executable...
CVE-2006-0787
wimpytrackplays.php in Plaino Wimpy MP3 Player, possibly 5.2 and earlier, allows remote attackers to insert arbitrary strings into trackme.txt via the 1 trackFile, 2 trackArtist, and 3 trackTitle parameters, which can result in providing false information about songs, occupying excessive disk spa...
CVE-2006-0787
wimpytrackplays.php in Plaino Wimpy MP3 Player, possibly 5.2 and earlier, allows remote attackers to insert arbitrary strings into trackme.txt via the 1 trackFile, 2 trackArtist, and 3 trackTitle parameters, which can result in providing false information about songs, occupying excessive disk spa...
Microsoft Windows Media Player Plugin Buffer Overflow Vulnerability
Description The Microsoft Windows Media Player plugin for non-Microsoft browsers is prone to a buffer-overflow vulnerability. The application fails to do proper boundary checks on user-supplied data before using it in a finite-sized buffer. An attacker can exploit this issue to execute arbitrary...