Microsoft Video ActiveX Control 'msvidctl.dll' BOF Vulnerability

This host is installed with Microsoft Video ActiveX Control and is prone to Buffer Overflow vulnerability. OpenVAS Vulnerability Test $Id: gbmsvideoactvxbofvulnjul09.nasl 5934 2017-04-11 12:28:28Z antu123 $ Microsoft Video ActiveX Control 'msvidctl.dll' BOF Vulnerability Authors: Sharath S...

DirectShow msvidctl.dll组件解析畸形MPEG2视频格式文件溢出漏洞

“MPEG-2标准”制定于1994年，设计目标是高级工业标准的图象质量以及更高的传输率。MPEG-2所能提供每秒钟3兆到10兆的传输率,其在NTSC制式下的分辨率可达720X486。由于出色的性能表现，MPEG-2被用作DVD的指定标准外，并适用于HDTV高清电视。此外，MPEG-2还广泛用于为广播、有线电视网、电缆网络以及卫星直播提供广播级的数字视频。 是DirectShow相关msvidctl.dll组件解析畸形MPEG2视频格式文件触发溢出，攻击者可以使用普通的javascript堆喷射方式远程执行任意代码。 Windows...

[Full-disclosure] Edraw PDF Viewer Component ActiveX Remote code execution vulnerability

Edraw PDF Viewer Component ActiveX Remote code execution vulnerability By Jambalaya of Nevis Labs Date: 2009.06.16 Vender: EdrawSoft Affected: Edraw PDF Viewer Component 3.2.0.126 other version may also be affected Overview: "Edraw PDF Viewer Component is a light weight ActiveX Control which...

Edraw PDF Viewer Component < 3.2.0.126 ActiveX Insecure Method Vuln

Exploit for windows platform in category remote exploits =================================================================== Edraw PDF Viewer Component object classid="clsid:44A8091F-8F01-43B7-8CF7-4BBA71E61E04" id=...

Edraw PDF Viewer Component 3.2.0.126 - ActiveX Insecure Method

Edraw PDF Viewer Component 3.2.0.126 - ActiveX Insecure Method Edraw PDF Viewer Component ActiveX Remote code execution vulnerability By Jambalaya of Nevis Labs Date: 2009.06.16 Vender: EdrawSoft Affected: Edraw PDF Viewer Component target.FtpConnect "ftp://192.168.220.201", "test", "tester"...

Autodesk IDrop ActiveX Control Heap Corruption Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Who: Autodesk http://www.autodesk.com What: Autodesk IDrop ActiveX Control http://usa.autodesk.com/adsk/servlet/index?siteID=123112&id=2753219& linkID=9240618 IDrop.ocx version 17.1.51.160 21E0CB95-1198-4945-A3D2-4BF804295F78 How: The Src, Background,...

Orbit Downloader File Deletion ActiveX Vulnerability

This host is installed with Orbit Downloader and is prone to File Deletion ActiveX Vulnerability. OpenVAS Vulnerability Test $Id: secpodorbitdownloaderactivexctrlvuln.nasl 5369 2017-02-20 14:48:07Z cfi $ Orbit Downloader File Deletion ActiveX Vulnerability Authors: Sujit Ghosal Copyright: Copyrig...

Imera TeamLinks ImeraIEPlugin.dll ActiveX Control DoS Vulnerability

This host is installed with Imera ImeraIEPlugin ActiveX and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: secpodimeraiepluginactvxctrlvuln.nasl 5369 2017-02-20 14:48:07Z cfi $ Imera TeamLinks ImeraIEPlugin.dll ActiveX Control DoS Vulnerability Authors: Nikita MR...

SopCast SopCore ActiveX Control DoS Vulnerability - Windows

SopCast SopCore ActiveX is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Imera ImeraIEPlugin ActiveX Control Remote Code Execution Exploit

No description provided by source. Who: Imerahttp://www.imera.com Imera TeamLinks Clienthttp://teamlinks.imera.com/install.html What: ImeraIEPlugin.dll Version 1.0.2.54 Dated 12/02/2008 75CC8584-86D4-4A50-B976-AA72618322C6 http://teamlinks.imera.com/ImeraIEPlugin.cab How: This control is used to...

&quot;Imera ImeraIEPlugin ActiveX Control Remote Code Execution Exploit&quot;

No description provided by source. Who: Imerahttp://www.imera.com Imera TeamLinks Clienthttp://teamlinks.imera.com/install.html What: ImeraIEPlugin.dll Version 1.0.2.54 Dated 12/02/2008 75CC8584-86D4-4A50-B976-AA72618322C6 http://teamlinks.imera.com/ImeraIEPlugin.cab How: This control is used to...

Imera ImeraIEPlugin ActiveX Control Remote Code Execution Exploit

Exploit for unknown platform in category remote exploits ================================================================= Imera ImeraIEPlugin ActiveX Control Remote Code Execution Exploit ================================================================= Who: Imerahttp://www.imera.com Imera...

Synactis All-In-The-Box ActiveX RCE Vulnerability

All-In-The-Box ActiveX is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Detection of Dangerous ActiveX Control

This script will list all the vulnerable ActiveX controls installed on the remote windows machine with references and cause. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

FlexCell Grid Control ActiveX Arbitrary File Overwrite Vulnerability

FlexCell Grid Control ActiveX is prone to an arbitrary file overwrite vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Symantec the presence of a remote execution vulnerability 0day-vulnerability warning-the black bar safety net

milw0rm to this morning published a Symantec remote execution vulnerability EXP DEMO code, a hacker can simply modify the Code of the SHELLCODE, and then after ALPHA2 coding can be constructed in a download virus web Trojan. It has yet to intercept to exploit the vulnerability of the net horse...

[Full-disclosure] Yahoo! JukeBox MediaGrid ActiveX Control AddBitmap&#40;&#41; Buffer Overflow

Who: Yahoo! http://www.yahoo.com What: mediagrid.dll version 2.2.2.56 22FD7C0A-850C-4A53-9821-0B0915C96139 Implements IObjectSafety This control is used with the Yahoo! JukeBox application. How: The 2nd parameter of the AddBitmap method is vulnerable to a buffer overflow. Fix: No official fix kno...

flexnet-overwrite.txt

Who: Macrovision What: Macrovision FlexNext Connect is a software package that allows ISV's to update their software products. It is generally used in conjunction with the InstallShield software deploymnet framework. FlexNet uses a number of ActiveX controls, some of which are marked safe for...

[Full-disclosure] StreamAudio ChainCast ProxyManager ccpm_0237.dll Buffer Overflow

Who: http://www.streamaudio.com StreamAudioformerly ChainCast is a provides streaming media for radio broadcasters. What: StreamAudio utilizes an Active control that acts as a proxy between StreamAudio and Windows Media Player which actually plays the content. This control is marked as follows:...

迅雷5 pplayer.dll 组件漏洞

出现严重0-Day漏洞，病毒作者可利用该漏洞编写恶意网页，当用于浏览这些网页的时候，就会感染病毒，进而该病毒可以盗窃用户的帐号和密码，从而使用户遭受到损失。 与上次的不同，这次有漏洞的程序出现在迅雷看看（Thunder KanKan）上，pplayer.dll 组件版本号：1.2.3.49，CLSID:F3E70CEA-956E-49CC-B444-73AFE593AD7F. 该组件内的一个函数FlvPlayerUrl上，存在边界检查不严格的问题，当向其传递过长参数时，会导致程序溢出。病毒作者可以利用这个缺陷，精心编写Shellcode，溢出，然后可以下载任意恶意病毒文件。 迅雷5...