CVE-2008-5378

arb-kill in arb 0.0.20071207.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/arbpids temporary file...

CVE-2008-5378

CVE-2008-5378 : The arb-kill utility (arb 0.0.20071207.1) is vulnerable to a local privilege escalation via a symlink attack on a /tmp/arb_pids__ file, allowing a local user to overwrite arbitrary files. The issue is rooted in unsafe handling of the temporary file used by arb, enabling a symlink ...

Linksys WVC54GC NetCamPlayerWeb11gv2 ActiveX control stack buffer overflow

Overview The Linksys WVC54GC NetCamPlayerWeb11gv2 ActiveX control contains a stack buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The Linksys WVC54GC wireless video camera provides an ActiveX control called...

LPViewer ActiveX Control url property buffer overflow

Added: 11/21/2008 CVE: CVE-2008-4384 BID: 31604 OSVDB: 48946 Background The LPViewer ActiveX Control installs with the iseemedia ZOOM control viewer and allows viewing of images created with iseemedia software. Problem A buffer overflow vulnerability allows command execution when a user opens a w...

LPViewer ActiveX Control url property buffer overflow

Added: 11/21/2008 CVE: CVE-2008-4384 BID: 31604 OSVDB: 48946 Background The LPViewer ActiveX Control installs with the iseemedia ZOOM control viewer and allows viewing of images created with iseemedia software. Problem A buffer overflow vulnerability allows command execution when a user opens a w...

Chilkat Socket ActiveX SaveLastError()任意文件覆盖漏洞

BUGTRAQ ID: 32333 Chilkat socket组件为TCP/IP套接字编程提供简单易用的API。 ChilkatSocket.ChilkatSocket.1 ActiveX控件（ChilkatSocket.dll）没有正确地验证对SaveLastError方式所提供的输入参数，如果远程攻击者受骗访问了恶意网页并向该方式传送了恶意输入的话，就可能导致以当前登录用户的权限覆盖和破坏系统上的任意文件。 Chilkat Software ChilkatSocket.DLL 2.3.1.1 临时解决方法： 为clsid...

NOS Microsystems getPlus ActiveX控件缓冲区溢出漏洞

CVE ID：CVE-2008-4817 NOS Microsystems getPlus是一款下载管理器控件。 NOS Microsystems getPlus控件处理安装文件时存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 存在问题的控件为 getPlus gp.ocx 1.2.2.50，目前证实用于Adobe Reader 8.1的WEB安装使用此控件，要判断此版本控件是否安装，注册表编辑器可用于尝试浏览此注册表键值： HKEYCLASSESROOT\CLSID\CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7...

Instant Expert Analysis ActiveX控件任意代码下载和执行漏洞

BUGTRAQ ID: 31752 CVECAN ID: CVE-2008-4385 Instant Expert Analysis允许站点通过单击方式快速分析用户的软硬件。 Instant Expert Analysis对Firefox或Netscape浏览器使用签名的Java Applet（SRLApplet.class，由sysreqlab2.jar或sysreqlab.jar提供），对Internet Explorer使用签名的ActiveX控件（sysreqlab.dll、sysreqlabsli.dll或sysreqlab2.dll）。...

Microsoft Rich Textbox ActiveX control SaveFile vulnerability

Added: 10/07/2008 CVE: CVE-2008-0237 BID: 27201 OSVDB: 40234 Background Microsoft Rich Textbox is an ActiveX control which comes with Visual Basic and allows creation of formatted text in RTF files. It is located in the Richtx32.ocx file. Problem The SaveFile method in the Rich Textbox ActiveX...

freebsd/x86 kill all processes 12 bytes

No description provided by source. CoDed bY suN8Hclf DaRk-CodeRs Group productions, kid FreeBSD x86 kill all procesess 12 bytes shellcode Compile: nasm -f elf code.asm ld -e start -o code code.o Assembly code: ---------------------code.asm------------------- section .text global start start: xor...

freebsd/x86 kill all processes 12 bytes

Exploit for freebsd/x86 platform in category shellcode ======================================= freebsd/x86 kill all processes 12 bytes ======================================= CoDed bY suN8Hclf DaRk-CodeRs Group productions, kid FreeBSD x86 kill all procesess 12 bytes shellcode Compile: nasm -f el...

freebsd/x86 - kill all processes 12 bytes

freebsd/x86 kill all processes 12 bytes. Shellcode exploit for freebsdx86 platform CoDed bY suN8Hclf DaRk-CodeRs Group productions, kid FreeBSD x86 kill all procesess 12 bytes shellcode Compile: nasm -f elf code.asm ld -e start -o code code.o Assembly code:...

Microsoft Visual Studio MaskedEdit ActiveX buffer overflow

Added: 09/03/2008 CVE: CVE-2008-3704 BID: 30674 OSVDB: 47475 Background Microsoft Visual Studio is a product for facilitating software development on Windows operating systems. Problem A buffer overflow in the MaskedEdit ActiveX control allows command execution when a user loads a web page which...

MS KB953839: Cumulative Security Update of ActiveX Kill Bits

The remote host is missing a list of kill bits for ActiveX controls that are known to contain vulnerabilities. If these ActiveX controls are ever installed on the remote host, either now or in the future, they would expose it to various security issues. %NASLMINLEVEL 70300 C Tenable Network...

CVE-2008-1667

The Probe Builder Service aka PBOVISServer.exe in European Performance Systems EPS Probe Builder 2.2 before A.02.20.901, as used in HP OpenView Internet Services OVIS on Windows, allows remote attackers to kill arbitrary processes via a process ID number in an unspecified opcode...

Microsoft Access Snapshot Viewer file download vulnerability

Added: 07/11/2008 CVE: CVE-2008-2463 BID: 30144 OSVDB: 46749 Background The Snapshot Viewer for Microsoft Access is used to display report snapshots without needing to fully invoke Access. It enables an ActiveX control in snapview.ocx. Problem The Snapshot Viewer ActiveX control allows remote fil...

Microsoft Access Snapshot Viewer file download vulnerability

Added: 07/11/2008 CVE: CVE-2008-2463 BID: 30144 OSVDB: 46749 Background The Snapshot Viewer for Microsoft Access is used to display report snapshots without needing to fully invoke Access. It enables an ActiveX control in snapview.ocx. Problem The Snapshot Viewer ActiveX control allows remote fil...

Microsoft Access Snapshot Viewer file download vulnerability

Added: 07/11/2008 CVE: CVE-2008-2463 BID: 30144 OSVDB: 46749 Background The Snapshot Viewer for Microsoft Access is used to display report snapshots without needing to fully invoke Access. It enables an ActiveX control in snapview.ocx. Problem The Snapshot Viewer ActiveX control allows remote fil...

Microsoft Access Snapshot Viewer file download vulnerability

Added: 07/11/2008 CVE: CVE-2008-2463 BID: 30144 OSVDB: 46749 Background The Snapshot Viewer for Microsoft Access is used to display report snapshots without needing to fully invoke Access. It enables an ActiveX control in snapview.ocx. Problem The Snapshot Viewer ActiveX control allows remote fil...

Black Ice软件BiAnno.ocx控件远程栈溢出漏洞

BUGTRAQ ID: 29635 Annotation SDK/ActiveX是Black Ice图形工具包中的图形编辑插件。 Annotation SDK/ActiveX插件所安装的BiAnno Control ActiveX控件（BiAnno.ocx）在处理AnnoSaveToTiff函数参数时存在栈溢出漏洞，如果用户受骗访问了恶意网页并向该函数传送了超长参数的话，就可以触发这个溢出，导致执行任意指令。 Black Ice Annotation SDK/ActiveX Plug-In 10.9.5.0 临时解决方法：...