CVE-2009-0390

Argument injection vulnerability in Enomaly Elastic Computing Platform ECP, formerly Enomalism, before 2.1.1 allows local users to send signals to arbitrary processes by populating the /tmp/enomalism2.pid file with command-line arguments for the kill program...

MetaProducts MetaTreeX ActiveX控件SaveToBMP()方式任意文件覆盖漏洞

BUGTRAQ ID: 33318 MetaTreeX是用于在Visual Basic、C++、VBA和Delphi应用程序中显示多级树状信息的ActiveX控件。 SaveToBMP.MetaTreeX ActiveX控件（MTXControl.OCX）没有正确地验证SaveToBMP方式的输入参数，如果远程攻击者受骗访问了恶意网页并向该方式传送了特制参数的话，就可能导致以当前登录用户权限覆盖任意系统文件。 MetaProducts MetaTreeX 1.5.100 临时解决方法： 为Clsid：67E66985-F81A-11D6-BC0F-F7B40157DC26设置kill...

AxisCamControl ActiveX Control Buffer Overflow

The remote host contins the AxisCamControl ActiveX control, which is used to control Axis network cameras. This control reportedly has a stack-based buffer overflow in its 'imagepantilt' property. If an attacker can trick a user on the affected host into viewing a specially crafted HTML document,...

Microsoft Works WkImgSrv.dll ActiveX Control WksPictureInterface vulnerability

Added: 01/08/2009 CVE: CVE-2008-1898 BID: 28820 OSVDB: 44458 Background Microsoft Works is a suite of productivity tools for home users. Problem The WkImgSrv.dll ActiveX control included in Microsoft Works allows command execution when a user loads a web page which instantiates the control with a...

Microsoft Works WkImgSrv.dll ActiveX Control WksPictureInterface vulnerability

Added: 01/08/2009 CVE: CVE-2008-1898 BID: 28820 OSVDB: 44458 Background Microsoft Works is a suite of productivity tools for home users. Problem The WkImgSrv.dll ActiveX control included in Microsoft Works allows command execution when a user loads a web page which instantiates the control with a...

Microsoft Works WkImgSrv.dll ActiveX Control WksPictureInterface vulnerability

Added: 01/08/2009 CVE: CVE-2008-1898 BID: 28820 OSVDB: 44458 Background Microsoft Works is a suite of productivity tools for home users. Problem The WkImgSrv.dll ActiveX control included in Microsoft Works allows command execution when a user loads a web page which instantiates the control with a...

Microsoft Works WkImgSrv.dll ActiveX Control WksPictureInterface vulnerability

Added: 01/08/2009 CVE: CVE-2008-1898 BID: 28820 OSVDB: 44458 Background Microsoft Works is a suite of productivity tools for home users. Problem The WkImgSrv.dll ActiveX control included in Microsoft Works allows command execution when a user loads a web page which instantiates the control with a...

Visual FoxPro vfp6r.dll ActiveX Control DoCmd command execution

Added: 12/19/2008 CVE: CVE-2008-0236 BID: 27205 OSVDB: 40380 Background Visual FoxPro is a tool for developing database applications. Problem The vfp6r.dll ActiveX control allows command execution when a user opens a web page which uses the DoCmd method. Resolution Set the kill bit for class ID...

Linksys WVC54GC NetCamPlayerWeb11gv2.ocx ActiveX控件栈溢出漏洞

BUGTRAQ ID: 32665 CVECAN ID: CVE-2008-4391 Linksys WVC54GC是一款支持802.11g协议的无线网络摄像头。 Linksys WVC54GC摄像头的NetCamPlayerWeb11gv2.ocx文件提供一个名为NetCamPlayerWeb11gv2的ActiveX控件，该控件没有正确地过滤对SetSource方式所传送的输入参数。如果用户受骗浏览了特制的HTML文档并向该方式提供了超长输入参数的话，就可以触发栈溢出，导致浏览器崩溃或执行任意指令。 0 Linksys WVC54GC 1.19 临时解决方法：...

Arbitrary file deletion

arb-kill in arb 0.0.20071207.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/arbpids temporary file...

DEBIAN-CVE-2008-5378

arb-kill in arb 0.0.20071207.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/arbpids temporary file...

CVE-2008-5378

arb-kill in arb 0.0.20071207.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/arbpids temporary file...

CVE-2008-5378

arb-kill in arb 0.0.20071207.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/arbpids temporary file...

CVE-2008-5378

CVE-2008-5378 : The arb-kill utility (arb 0.0.20071207.1) is vulnerable to a local privilege escalation via a symlink attack on a /tmp/arb_pids__ file, allowing a local user to overwrite arbitrary files. The issue is rooted in unsafe handling of the temporary file used by arb, enabling a symlink ...

Linksys WVC54GC NetCamPlayerWeb11gv2 ActiveX control stack buffer overflow

Overview The Linksys WVC54GC NetCamPlayerWeb11gv2 ActiveX control contains a stack buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The Linksys WVC54GC wireless video camera provides an ActiveX control called...

LPViewer ActiveX Control url property buffer overflow

Added: 11/21/2008 CVE: CVE-2008-4384 BID: 31604 OSVDB: 48946 Background The LPViewer ActiveX Control installs with the iseemedia ZOOM control viewer and allows viewing of images created with iseemedia software. Problem A buffer overflow vulnerability allows command execution when a user opens a w...

LPViewer ActiveX Control url property buffer overflow

Added: 11/21/2008 CVE: CVE-2008-4384 BID: 31604 OSVDB: 48946 Background The LPViewer ActiveX Control installs with the iseemedia ZOOM control viewer and allows viewing of images created with iseemedia software. Problem A buffer overflow vulnerability allows command execution when a user opens a w...

Chilkat Socket ActiveX SaveLastError()任意文件覆盖漏洞

BUGTRAQ ID: 32333 Chilkat socket组件为TCP/IP套接字编程提供简单易用的API。 ChilkatSocket.ChilkatSocket.1 ActiveX控件（ChilkatSocket.dll）没有正确地验证对SaveLastError方式所提供的输入参数，如果远程攻击者受骗访问了恶意网页并向该方式传送了恶意输入的话，就可能导致以当前登录用户的权限覆盖和破坏系统上的任意文件。 Chilkat Software ChilkatSocket.DLL 2.3.1.1 临时解决方法： 为clsid...

NOS Microsystems getPlus ActiveX控件缓冲区溢出漏洞

CVE ID：CVE-2008-4817 NOS Microsystems getPlus是一款下载管理器控件。 NOS Microsystems getPlus控件处理安装文件时存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 存在问题的控件为 getPlus gp.ocx 1.2.2.50，目前证实用于Adobe Reader 8.1的WEB安装使用此控件，要判断此版本控件是否安装，注册表编辑器可用于尝试浏览此注册表键值： HKEYCLASSESROOT\CLSID\CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7...

Instant Expert Analysis ActiveX控件任意代码下载和执行漏洞

BUGTRAQ ID: 31752 CVECAN ID: CVE-2008-4385 Instant Expert Analysis允许站点通过单击方式快速分析用户的软硬件。 Instant Expert Analysis对Firefox或Netscape浏览器使用签名的Java Applet（SRLApplet.class，由sysreqlab2.jar或sysreqlab.jar提供），对Internet Explorer使用签名的ActiveX控件（sysreqlab.dll、sysreqlabsli.dll或sysreqlab2.dll）。...