Lucene search
K

5 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

Ourgame 'GLIEDown2.dll' ActiveX Control - Remote Code Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/29118/info Ourgame 'GLIEDown2.dll' ActiveX control is prone to a remote code-execution vulnerability because it fails to sufficiently verify user-supplied input. An attacker can exploit this issue to run arbitrary...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2008/06/04 12:0 a.m.11 views

联众世界GLIEDown2.dll Active控件多个缓冲区溢出漏洞

BUGTRAQ ID: 29118,29446 联众世界是在中国非常流行的在线游戏网站。 联众世界的游戏大厅主程序GLWorld所安装的GLIEDown2.dll ActiveX控件(CLSID:F917534D-535B-416B-8E8F-0C04756C31A8)没有正确地处理对IEStart、IEStartNative方式以及ServerList、GameInfo和GruopName属性的输入参数。如果用户受骗访问了恶意网页并向这些方式传送了特制参数的话,就可能触发堆溢出或栈溢出,导致在用户系统上执行任意指令。 利用此漏洞进行挂马的0day攻击已经出现。 GlobalLink...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2008/05/10 12:0 a.m.17 views

联众世界GLIEDown2.dll Active控件任意代码执行漏洞

联众世界是在中国非常流行的在线游戏网站。 联众世界的游戏大厅主程序GLWorld所安装的GLIEDown2.dll ActiveX控件(CLSID:F917534D-535B-416B-8E8F-0C04756C31A8)没有正确地处理某些用户输入参数,如果用户受骗访问了恶意网页并向这些方式传送了特制参数的话,可能导致在用户系统上执行任意指令。 利用此漏洞进行挂马的0day攻击已经出现。 GlobalLink 2.8.1.2 beta 临时解决方法: 为有漏洞的控件设置Kill-Bit: Windows Registry Editor Version 5.00...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/05/08 12:0 a.m.14 views

Ourgame GLIEDown2.dll ActiveX Control - Remote Code Execution

Ourgame GLIEDown2.dll ActiveX Control - Remote Code Execution source: https://www.securityfocus.com/bid/29118/info Ourgame 'GLIEDown2.dll' ActiveX control is prone to a remote code-execution vulnerability because it fails to sufficiently verify user-supplied input. An attacker can exploit this...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2008/05/08 12:0 a.m.18 views

Ourgame 'GLIEDown2.dll' ActiveX Control - Remote Code Execution

source: https://www.securityfocus.com/bid/29118/info Ourgame 'GLIEDown2.dll' ActiveX control is prone to a remote code-execution vulnerability because it fails to sufficiently verify user-supplied input. An attacker can exploit this issue to run arbitrary attacker-supplied code in the context of...

7.4AI score
Exploits0
Rows per page
Query Builder