MySQL: CREATE TABLE ... SELECT causes crash when KILL_BAD_DATA is returned (MySQL Bug#55826)

MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 does not properly propagate type errors, which allows remote attackers to cause a denial of service server crash via crafted arguments to extreme-value functions such as 1 LEAST and 2 GREATEST, related to KILLBADDATA and a "CREATE...

Security Settings for ActiveX controls and OLE objects in Office 2003 and in the 2007 Office suite

Resolves the issue on how users can have the ability to control if and how ActiveX controls and OLE objects load with an Office kill-bit list.Important This article contains information that shows you how to help lower security settings or how to turn off security features on a computer. You can...

Invensys Wonderware Archestra ConfigurationAccessComponent ActiveX control stack buffer overflow

Overview The Invensys Wonderware Archestra ConfigurationAccessComponent ActiveX control contains a stack buffer overflow that could allow a remote attacker to execute arbitrary code on an affected system Description The Invensys Wonderware Archestra ConfigurationAccessComponent ActiveX control,...

Yahoo Messenger WScript.Shell ActiveX control command execution

Added: 07/29/2010 Background Yahoo! Messenger is an instant messaging application. It includes the WScript.Shell ActiveX control. Problem The Execute method of the WScript.Shell ActiveX control allows command execution when a malicious web page is loaded in Internet Explorer. Resolution Set the...

Yahoo Messenger WScript.Shell ActiveX control command execution

Added: 07/29/2010 Background Yahoo! Messenger is an instant messaging application. It includes the WScript.Shell ActiveX control. Problem The Execute method of the WScript.Shell ActiveX control allows command execution when a malicious web page is loaded in Internet Explorer. Resolution Set the...

Yahoo Messenger WScript.Shell ActiveX control command execution

Added: 07/29/2010 Background Yahoo! Messenger is an instant messaging application. It includes the WScript.Shell ActiveX control. Problem The Execute method of the WScript.Shell ActiveX control allows command execution when a malicious web page is loaded in Internet Explorer. Resolution Set the...

Yahoo Messenger WScript.Shell ActiveX control command execution

Added: 07/29/2010 Background Yahoo! Messenger is an instant messaging application. It includes the WScript.Shell ActiveX control. Problem The Execute method of the WScript.Shell ActiveX control allows command execution when a malicious web page is loaded in Internet Explorer. Resolution Set the...

SAPGui BI wadmxhtml.dll Tags Property Heap Corruption

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Who - -------- SAP http://www.sap.com What - -------- SAPGui BI component File: PROGRAMFILESsapbusiness explorerbiwadmxhtml.dll Version: 7100.1.400.8 ClassID: 30DD068D-5AD9-434C-AAAC-46ABE37194EB RegKey Safe for Script: False RegKey Safe for Init: Fal...

Viscom Software Movie Player Pro ActiveX Control DrawText Buffer Overflow

Added: 07/16/2010 CVE: CVE-2010-0356 BID: 40719 OSVDB: 61634 Background Viscom Movie Player Pro SDK ActiveX is a software development kit for Microsoft Windows environments to incorporate an advanced media player with overlay text and images. Problem The MOVIEPLAYER.MoviePlayerCtrl.1 ActiveX...

Viscom Software Movie Player Pro ActiveX Control DrawText Buffer Overflow

Added: 07/16/2010 CVE: CVE-2010-0356 BID: 40719 OSVDB: 61634 Background Viscom Movie Player Pro SDK ActiveX is a software development kit for Microsoft Windows environments to incorporate an advanced media player with overlay text and images. Problem The MOVIEPLAYER.MoviePlayerCtrl.1 ActiveX...

linux/ARM - setuid(0) & kill(-1, SIGKILL) - 28 bytes

Exploit for linux/x86 platform in category shellcode ==================================================== linux/ARM - setuid0 & kill-1, SIGKILL - 28 bytes ==================================================== / Title: Linux/ARM - setuid0 & kill-1, SIGKILL - 28 bytes Kill all processes Date:...

Linux/ARM - setuid0 & kill-1, SIGKILL 28 bytes

Linux/ARM - setuid0 & kill-1, SIGKILL - 28 bytes. Shellcode exploit for linux platform / Title: Linux/ARM - setuid0 & kill-1, SIGKILL - 28 bytes Kill all processes Date: 2010-06-29 Tested: ARM926EJ-S rev 5 v5l Author: Jonathan Salwan Web: http://shell-storm.org | http://twitter.com/jonathansalwan...

irc-unrealircd-backdoor NSE Script

Checks if an IRC server is backdoored by running a time-based command ping and checking how long it takes to respond. The irc-unrealircd-backdoor.command script argument can be used to run an arbitrary command on the remote system. Because of the nature of this vulnerability the output is never...

Microsoft Security Bulletin MS10-034 - Critical Cumulative Security Update of ActiveX Kill Bits (980195)

Microsoft Security Bulletin MS10-034 - Critical Cumulative Security Update of ActiveX Kill Bits 980195 Published: June 08, 2010 Version: 1.0 General Information Executive Summary This security update addresses two privately reported vulnerabilities for Microsoft software. This security update is...

linux/x86 - kill all running process

kill all running process x86/linux. Shellcode exploit for linux platform / 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote,...

phpcms2008 sp3 through the kill 0day-vulnerability warning-the black bar safety net

This vulnerability six months ago by the dindle released in the ocean to the top, so reproduced, please famous source Injection yp/company.php where=%2 3 Get backstage access http://www.xx.com/admin.php mod=phpcms&file=safe&action=seecode&files=kindle.php ! Size: 14.16 K Size: 5 0 0 x 1 9 5 Brows...

RHEL 5 : openldap (RHSA-2010:0198)

Updated openldap packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

The word Trojan-free kill process-vulnerability warning-the black bar safety net

| In a further invasion of the server,the uploaded file will be the server to filter out,we upload WEBSHLL cannot run! To blue screen the most small ASP Trojan, for example. Be modified as follows. The original code is%execute request"cmd"% tag to modify the replacement down to...

ChemViewX v1.9.5 ActiveX Control Mutliple Stack Overflows

, , . .' '. ', . , '. , ., , / / / ==/ / / / / / / | Y Y / /| / /||| / / /.-. / /:wq x.0 '=.|w|.=' ='"=. presents.. ChemviewX ActiveX Control Multiple Stack Overflows Versions affected: v1.9.5 +-----------+ |Description| +-----------+ Hyleos ChemviewX is a free ActiveX control used to visualize...

MS10-008: Cumulative Security Update of ActiveX Kill Bits (978262)

The Microsoft Data Analyzer ActiveX control has a remote code execution vulnerability. The system may also have one or more vulnerable third-party ActiveX controls installed. A remote attacker could exploit these issues by tricking a user into requesting a maliciously crafted web page, resulting ...