BusinessObjects RptViewerAX ActiveX控件栈溢出漏洞

BUGTRAQ ID: 28292 CVECAN ID: CVE-2007-6254 Business Objects是全球领先的商务智能平台。 Business Objects产品所安装的RptViewerAX ActiveX控件（RptViewerAX.dll）中存在栈溢出漏洞，如果用户受骗访问了恶意网页并向该控件传送了超长参数的话，就可能触发这个溢出，导致执行任意指令。 Business Objects BusinessObjects 6.5 Business Objects ---------------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

RealNetworks RealPlayer rmoc3260.dll ActiveX控件内存破坏漏洞

BUGTRAQ ID: 28157 RealPlayer是一款流行的多媒体播放器，支持多种媒体格式。 RealPlayer的rmoc3260.dll ActiveX控件实现上存在漏洞，远程攻击者可能利用此漏洞控制用户系统。 rmoc3260.dll ActiveX控件没有正确地处理Console属性的输入参数，如果用户受骗访问了恶意站点的话，就可能触发内存破坏，导致执行任意指令。 Real Networks RealPlayer 11.0.1 build 6.0.14.794 临时解决方法： 在IE中禁用RealPlayer ActiveX控件，为以下CLSID设置kill bit：...

Microsoft Office Web Components Spreadsheet ActiveX control URL parsing stack buffer overflow

Overview The Microsoft Office Web Components ActiveX controls contain a stack buffer overflow in the processing of URLs, which allows a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft Office Web Components are ActiveX controls that provide...

RealNetworks RealPlayer ActiveX controls property heap memory corruption

Overview Multiple RealPlayer ActiveX controls fail to properly handle properties, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description RealNetworks RealPlayer provides multiple ActiveX controls to allow integration with Internet Explorer...

瑞星免费在线查毒OL2005.dll ActiveX控件远程代码执行漏洞

BUGTRAQ ID: 27997 瑞星是中国的一家非常著名的杀毒软件厂商。 瑞星的在线查毒服务ActiveX控件实现上存在漏洞，远程攻击者可能利用此漏洞控制用户系统。 瑞星在其主站提供了免费在线查毒服务（http://online.rising.com.cn/free/index.htm ）。在执行免费查毒时，站点会要求用户安装Rising Web Scan Object ActiveX控件（OL2005.dll）。该控件的UpdateEngine方式没有正确地验证某些参数输入，可能导致向用户系统上下载并加载恶意的二进制程序。 Rising OL2005.dll 18.0.0.7...

Move Media Player qsp2ie07074039.dll ActiveX控件栈溢出漏洞

BUGTRAQ ID: 27995 Move Media Player是一款网络流媒体播放器。 Move Media Player的ActiveX控件实现上存在缓冲区溢出漏洞，远程攻击者可能利用此漏洞控制用户系统。 Move Media Player所安装的Quantum Streaming IE Player ActiveX控件（qsp2ie07074039.dll）没有正确地验证对UploadLogs方式的输入参数。如果用户受骗访问了恶意网页并向该方式传送了超长URL参数的话，就可能触发栈溢出，导致执行任意指令。 Move Networks qsp2ie07074039.dll...

Apple QuickTime QTPlugin.ocx ActiveX控件多个栈溢出漏洞

BUGTRAQ ID: 27769 Apple QuickTime是一款非常流行的多媒体播放器。 QuickTime所安装的QTPlugin.ocx ActiveX控件在处理畸形参数数据时存在缓冲区溢出漏洞，远程攻击者可能利用此漏洞控制用户系统。 QTPlugin.ocx ActiveX控件没有正确地验证对SetBgColor、SetHREF、SetMovieName、SetTarget和SetMatrix函数的输入，如果用户受骗访问了恶意网页并向这些函数传送了超长字符串的话，就可能触发栈溢出，导致执行任意指令。 Apple QuickTime Player = 7.4.1 临时解决方法...

Gateway CWebLaunchCtl ActiveX控件远程栈溢出漏洞

BUGTRAQ ID: 27193 Gateway是美国一个著名的电脑品牌，产品包括PC、笔记本、外围设备等。 Gateway电脑所带的ActiveX控件实现上存在缓冲区溢出漏洞，远程攻击者可能利用此漏洞控制用户系统。 Gateway电脑中所安装的CWebLaunchCtl ActiveX控件（weblaunch.ocx）没有正确地验证对DoWebLaunch函数的输入，如果用户受骗访问了恶意网页并向该函数传送了超长参数的话，就可能触发栈溢出，导致执行任意指令。 Gateway weblaunch.ocx 1.0.0.1 临时解决方法： 在IE中禁用CWebLaunchCtl...

Apple QuickTime RTSP Response message Reason-Phrase buffer overflow vulnerability

Overview Apple QuickTime contains a buffer overflow vulnerability that may allow a remote, unauthenticated attacker to cause a denial-of-service condition and possibly execute arbitrary code. Description Real Time Streaming Protocol RTSP is a protocol that is used by streaming media systems. Appl...

AOL Radio AOLMediaPlaybackControl.exe stack buffer overflow

Overview The AOL AOLMediaPlaybackControl application contains a stack buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description AOL Radio includes several ActiveX controls to stream audio in web pages. The AOL AmpX and...

XUpload ActiveX Control AddFolder Method Buffer Overflow

The remote host contains a version of the XUpload ActiveX control from Persits Software that reportedly is affected by a buffer overflow in its 'AddFolder' method that can be triggered by a long argument. If a remote attacker can trick a user on the affected host into visiting a specially crafted...

Lotus Domino Web Access ActiveX control dwa7w.dll buffer overflow

Added: 12/31/2007 CVE: CVE-2007-4474 BID: 26972 OSVDB: 40954 Background Lotus Domino Web Access provides capabilities similar to those of the Lotus Notes client, delivered through a web browser. Problem A buffer overflow vulnerability in the Lotus Domino Web Access ActiveX control in the dwa7w.dl...

IBM Lotus Domino Web Access ActiveX control stack buffer overflows

Overview The IBM Lotus Domino Web Access ActiveX control contains multiple stack buffer overflow vulnerabilities, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description IBM Lotus Domino includes an ActiveX control called Domino Web Access,...

PhpMyDesktopArcade 1.0 Final - phpdns_basedir Remote File Inclusion

PhpMyDesktopArcade 1.0 Final - phpdnsbasedir Remote File Inclusion Name : PhpMyDesktop|arcade 1.0 Final phpdnsbasedir Remote File Include Download From : http://mesh.dl.sourceforge.net/sourceforge/pmd-arcade/pmdarcade10final.zip Found By : RoMaNcYxHaCkEr Home Page : Not Yet : Google Dork : Powere...

The Trojan uses the“free kill”evading anti-virus techniques-vulnerability warning-the black bar safety net

Today, talk about horses can be described as color change. Trojan indeed than the conventional virus more ruthless, monitoring your operation, devouring your privacy, destroy your data. We install the latest antivirus software and daily patch updates, and the firewall is always protected, but why...

Break ray client figure ASP webmaster Safety assistant-vulnerability warning-the black bar safety net

To Lake2 website and 1. 5 the source code, found this version indeed improved a lot, and increase the killing function: 1:killing by the Unicode encoding of the ASP Trojan 2:killing the useOpen|CreateTextFile, And SaveToFile, Save, set Server, Server. Transfer|Execute, the ShellExecute, Exec, the...

CityWriter 0.9.7 head.php Remote File Inclusion Vulnerability

No description provided by source. Name : CityWriter 0.9.7 Remote File Include Download From : http://download.hulihanapplications.com/citywriter/citywriter-0.97.zip Found By : RoMaNcYxHaCkEr Home Page : Not Yet : ============================================================================ Vulne...

citywriter-rfi.txt

Name : CityWriter 0.9.7 Remote File Include Download From : http://download.hulihanapplications.com/citywriter/citywriter-0.97.zip Found By : RoMaNcYxHaCkEr Home Page : Not Yet : ============================================================================ Vulne Code In File head.php In Line 1:...

Fastpublish CMS 1.9999 config[fsBase] RFI Vulnerability

No description provided by source. Name : Fastpublish CMS 1.9999 configfsBase Remote File Include Download From : http://www.fastpublish.org/aufbau/phpcontent/downloadlist.php?action=download&id=53&sprache=en Found By : RoMaNcYxHaCkEr Home Page : Not Yet :...

CityWriter 0.9.7 - head.php Remote File Inclusion

CityWriter 0.9.7 - head.php Remote File Inclusion Name : CityWriter 0.9.7 Remote File Include Download From : http://download.hulihanapplications.com/citywriter/citywriter-0.97.zip Found By : RoMaNcYxHaCkEr Home Page : Not Yet :...