CVE-2007-2852

Multiple stack-based buffer overflows in ESET NOD32 Antivirus before 2.70.37.0 allow remote attackers to execute arbitrary code during 1 delete/disinfect or 2 rename operations via a crafted directory name...

CVE-2007-2783

Technical details are not publicly available in the provided documents. Monitor for updates.

CVE-2007-2751

Multiple PHP remote file inclusion vulnerabilities in PHPGlossar 0.8 allow remote attackers to execute arbitrary PHP code via a URL in the formatmenue parameter to 1 admin/inc/changeaction.php or 2 admin/inc/add.php...

CVE-2007-1689

Buffer overflow in the ISAlertDataCOM ActiveX control in ISLALERT.DLL for Norton Personal Firewall 2004 and Internet Security 2004 allows remote attackers to execute arbitrary code via long arguments to the 1 Get and 2 Set functions...

CVE-2007-1689

Buffer overflow in the ISAlertDataCOM ActiveX control in ISLALERT.DLL for Norton Personal Firewall 2004 and Internet Security 2004 allows remote attackers to execute arbitrary code via long arguments to the 1 Get and 2 Set functions...

Remote file inclusion

PHP remote file inclusion vulnerability in functions/prependadm.php in NagiosQL 2005 2.00 allows remote attackers to execute arbitrary PHP code via a URL in the SETSpathphysical parameter...

SOL3279 - Heap-based buffer overflow in mod_proxy - CAN-2004-0492

Heap-based buffer overflow in proxyutil.c for modproxy in Apache 1.3.25 to 1.3.31 allows remote attackers to cause a denial of service process crash and possibly execute arbitrary code by way of a negative Content-Length HTTP header field, which causes a large amount of data to be copied...

Sun Java JDK 1.x - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/24004/info Sun JDK is prone to a multiple vulnerabilities. An attacker can exploit these issues to crash the affected application, effectively denying service. The attacker may also be able to execute arbitrary code, which may facilitate a compromise of t...

Remote file inclusion

PHP remote file inclusion vulnerability in language/1/splash.lang.php in Beacon 0.2.0 allows remote attackers to execute arbitrary PHP code via a URL in the languagePath parameter...

CVE-2007-2663

PHP remote file inclusion vulnerability in language/1/splash.lang.php in Beacon 0.2.0 allows remote attackers to execute arbitrary PHP code via a URL in the languagePath parameter...

Code injection

Multiple off-by-one errors in VooDoo cIRCle before 1.1.beta27 allow remote attackers to cause a denial of service connection loss or possibly execute arbitrary code via a 1 DNS name response of the exact length as a buffer; or a long 2 channel name, 3 partyline channel name, or unspecified vector...

CVE-2007-2645

Integer overflow in the exifdataloaddataentry function in exif-data.c in libexif before 0.6.14 allows user-assisted remote attackers to cause a denial of service crash or possibly execute arbitrary code via crafted EXIF data, involving the 1 doff or 2 s variable...

Buffer overflow

Buffer overflow in a certain ActiveX control in the GDivX Zenith Player AviFixer class in fix.dll 1.0.0.1 allows remote attackers to execute arbitrary code via a long SetInputFile property value...

Buffer overflow

Multiple buffer overflows in the Office Viewer OCX ActiveX control oa.ocx 3.2 allow remote attackers to cause a denial of service crash or possibly execute arbitrary code via a long argument to the 1 HttpDownloadFile, 2 Open, 3 OpenWebFile, 4 DoOleCommand, 5 FTPDownloadFile, 6 FTPUploadFile, 7...

CVE-2007-2588

Multiple buffer overflows in the Office Viewer OCX ActiveX control oa.ocx 3.2 allow remote attackers to cause a denial of service crash or possibly execute arbitrary code via a long argument to the 1 HttpDownloadFile, 2 Open, 3 OpenWebFile, 4 DoOleCommand, 5 FTPDownloadFile, 6 FTPUploadFile, 7...

CVE-2007-2569

Multiple PHP remote file inclusion vulnerabilities in Friendly 1.0d1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the friendlypath parameter to 1 core/data/yaml.inc.php, or load.php in 2 core/data/, 3 core/display/, or 4 core/support/...

CVE-2007-0944

Unspecified vulnerability in the CTableCol::OnPropertyChange method in Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on Windows 2000 SP4; and 6 on Windows XP SP2, or Windows Server 2003 SP1 or SP2 allows remote attackers to execute arbitrary code by calling deleteCell on a named...

CVE-2007-0947

Use-after-free vulnerability in Microsoft Internet Explorer 7 on Windows XP SP2, Windows Server 2003 SP1 or SP2, or Windows Vista allows remote attackers to execute arbitrary code via crafted HTML objects, resulting in accessing deallocated memory of CMarkup objects, aka the second of two "HTML...

CVE-2007-2239

Stack-based buffer overflow in the SaveBMP method in the AXIS Camera Control aka CamImage ActiveX control before 2.40.0.0 in AxisCamControl.ocx in AXIS 2100, 2110, 2120, 2130 PTZ, 2420, 2420-IR, 2400, 2400+, 2401, 2401+, 2411, and Panorama PTZ allows remote attackers to cause a denial of service...

CVE-2007-2239

Stack-based buffer overflow in the SaveBMP method in the AXIS Camera Control aka CamImage ActiveX control before 2.40.0.0 in AxisCamControl.ocx in AXIS 2100, 2110, 2120, 2130 PTZ, 2420, 2420-IR, 2400, 2400+, 2401, 2401+, 2411, and Panorama PTZ allows remote attackers to cause a denial of service...