663 matches found
Microsoft Windows XP - WmiTraceMessageVa Integer Truncation (PoC) (MS11-011)
Microsoft Windows XP - WmiTraceMessageVa Integer Truncation PoC MS11-011 / Exploit Title: MS11-011CVE-2011-0045: MS Windows XP WmiTraceMessageVa Integer Truncation Vulnerability PoC Date: 2011-03-01 Author: Nikita Tarakanov CISS Research Team Software Link: Version: prior to MS11-011 Tested on: W...
Microsoft Windows XP WmiTraceMessageVa Integer Truncation
/ Exploit Title: MS11-011CVE-2011-0045: MS Windows XP WmiTraceMessageVa Integer Truncation Vulnerability PoC Date: 2011-03-01 Author: Nikita Tarakanov CISS Research Team Software Link: Version: prior to MS11-011 Tested on: Win XP SP3 CVE : CVE-2011-0045 Status : Patched Binary Analysis:...
Ruby memory corruption in BigDecimal on 64bit platforms
The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and earlier, as used on Apple Mac OS X before 10.6.7 and other platforms, does not properly allocate memory, which allows context-dependent attackers to execute arbitrary code or cause a denial of service applicati...
Microsoft Windows XP - WmiTraceMessageVa Integer Truncation (PoC) (MS11-011)
/ Exploit Title: MS11-011CVE-2011-0045: MS Windows XP WmiTraceMessageVa Integer Truncation Vulnerability PoC Date: 2011-03-01 Author: Nikita Tarakanov CISS Research Team Software Link: Version: prior to MS11-011 Tested on: Win XP SP3 CVE : CVE-2011-0045 Status : Patched Binary Analysis:...
CVE-2011-0045
The Trace Events functionality in the kernel in Microsoft Windows XP SP3 does not properly perform type conversion, which causes integer truncation and insufficient memory allocation and triggers a buffer overflow, which allows local users to gain privileges via a crafted application, related to...
Integer overflow
The Trace Events functionality in the kernel in Microsoft Windows XP SP3 does not properly perform type conversion, which causes integer truncation and insufficient memory allocation and triggers a buffer overflow, which allows local users to gain privileges via a crafted application, related to...
Microsoft Windows Kernel Elevation of Privilege Vulnerability (2393802)
This host is missing a critical security update according to Microsoft Bulletin MS11-011. OpenVAS Vulnerability Test $Id: secpodms11-011.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft Windows Kernel Elevation of Privilege Vulnerability 2393802 Authors: Madhuri D Copyright: Copyright c 2011 SecPod...
CVE-2011-0045
The Trace Events functionality in the kernel in Microsoft Windows XP SP3 does not properly perform type conversion, which causes integer truncation and insufficient memory allocation and triggers a buffer overflow, which allows local users to gain privileges via a crafted application, related to...
CVE-2011-0045
CVE-2011-0045 affects the Windows XP SP3 kernel “Trace Events” subsystem, specifically the WmiTraceMessageVa path. The vulnerability arises from improper type conversion that causes integer truncation, leading to insufficient memory allocation and a resulting buffer overflow. Exploitation enables...
Microsoft Windows Kernel Elevation of Privilege Vulnerability (2393802)
This host is missing a critical security update according to Microsoft Bulletin MS11-011. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
MS11-011: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2393802)
The remote Windows host is running a version of the Windows kernel that is affected by one or more of the following vulnerabilities : - A buffer overflow in the 'GreEnableEUDC' function can be triggered using specially crafted end-user-defined characters EUDC registry key values. CVE-2010-4398 - ...
CVE-2011-0682
Integer truncation error in opera.dll in Opera before 11.01 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via an HTML form with a select element that contains a large number of children...
CVE-2011-0682
CVE-2011-0682 is an Opera vulnerability caused by an integer truncation in opera.dll that can be triggered by an HTML form with a select element containing a large number of children. The issue could allow remote arbitrary code execution or memory corruption. Opera 11.01 addresses this vulnerabil...
CVE-2011-0682
Integer truncation error in opera.dll in Opera before 11.01 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via an HTML form with a select element that contains a large number of children...
Opera Closes Critical Security Flaw With Version 11.01
Opera has released a new version of its flagship browser, which, among other things, fixes a remotely exploitable critical vulnerability that was disclosed late last week. Opera 11.01 also includes some other stability upgrades. The new version of Opera for Windows has fixes for a total of five...
Opera < 11.01 Multiple Vulnerabilities
The version of Opera installed on the remote Windows host is earlier than 11.01. Such versions are potentially affected by the following issues : - The Cascading Style Sheets CSS Extensions for XML implementation recognizes links to javascript: URLs in the -o-link property, which could be abused ...
Critical Bug Found in Opera Browser
There is a critical vulnerability in the Opera browser that could be used by an attacker to execute arbitrary code on vulnerable machines. The bug affects the latest version of Opera running on Windows 7, as well as Windows XP SP3. The vulnerability surfaced Friday and it has been confirmed by...
Secunia Research: Microsoft Office PICT Filter Integer Truncation Vulnerability
====================================================================== Secunia Research 14/12/2010 - Microsoft Office PICT Filter Integer Truncation Vulnerability - ====================================================================== Table of Contents Affected...
CentOS Update for openoffice.org CESA-2010:0643 centos3 i386
Check for the Version of openoffice.org OpenVAS Vulnerability Test CentOS Update for openoffice.org CESA-2010:0643 centos3 i386 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/...
CentOS Update for openoffice.org CESA-2010:0643 centos3 i386
Check for the Version of openoffice.org OpenVAS Vulnerability Test CentOS Update for openoffice.org CESA-2010:0643 centos3 i386 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/...