832 matches found
Corel PaintShop Pro Insecure Library Loading (CVE-2013-0733)
A code execution vulnerability exists in Corel's PaintShop Pro...
Watchguard Server Center 11.7.4 Insecure Library Loading
Watchguard Server Center version 11.7.4 suffers from a dll hijacking vulnerability with wgpr.dll. Watchguard Server Center v11.7.4 wgpr.dll Insecure Library Loading Local Privilege Escalation Vulnerability RCE Security Advisory http://www.rcesecurity.com 1. ADVISORY INFORMATION...
Watchguard Server Center 11.7.4 Insecure Library Loading
Watchguard Server Center v11.7.4 wgpr.dll Insecure Library Loading Local Privilege Escalation Vulnerability RCE Security Advisory http://www.rcesecurity.com 1. ADVISORY INFORMATION ----------------------- Product: Watchguard Server Center Vendor URL: www.watchguard.com Type: Uncontrolled Search...
Soda PDF Insecure Library Loading Vulnerability - Windows
Soda PDF is prone to insecure library loading vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:soda:sodapdf"; if...
Nitro Pro Insecure Library Loading
The version of Nitro Pro installed on the remote Windows host is earlier than 8.5.2.10 and is, therefore, reportedly affected by an insecure library loading vulnerability. By tricking a user into opening a specially crafted file, an attacker could execute arbitrary code on the remote host subject...
[IA48] Photodex ProShow Producer v5.0.3297 Insecure Library Loading Vulnerability
Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Photodex ProShow Producer Vendor URL: www.photodex.com Type: Uncontrolled Search Path Element CWE-427 Date found: 2013-02-23 Date published: 2013-02-23 CVSSv2 Score: 4,4...
Foxit Reader Insecure Library Loading
A code execution vulnerability has been reported in Foxit Reader. The vulnerability is due to an error in a dynamic link library DLL search path. A remote attacker could exploit this vulnerability by enticing a user to open a file from a directory, which also contains a malicious DLL. Successful...
Multiple Products wintab32.dll Insecure Library Loading (CVE-2013-0742)
A code execution vulnerability has been identified in Multiple Products. The vulnerability is due to an improper dynamic link library DLL search path leading to insecure library loading. A remote attacker could exploit this vulnerability by enticing a user to open a file from a directory, which...
Check Point Remote Access Client Insecure Library Loading
The version of Check Point Remote Access Client installed on the remote Windows host is earlier than E75.10 and is, therefore, reportedly affected by an insecure library loading vulnerability. If an attacker can trick a user on the affected system into opening a specially crafted file, they may b...
ThinPrint - 'tpfc.dll' Insecure Library Loading Arbitrary Code Execution
// source: https://www.securityfocus.com/bid/55421/info ThinPrint is prone to a vulnerability that lets attackers execute arbitrary code. Exploiting this issue allows local attackers to execute arbitrary code with the privileges of the user running the affected application. include int hijackpoc...
CentOS Update for java CESA-2011:0281 centos5 x86_64
Check for the Version of java OpenVAS Vulnerability Test CentOS Update for java CESA-2011:0281 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
Microsoft Office security vulnerabilities
VBA unsafe library loading, Office for Mac weak files permissions...
MS12-046: Vulnerability in Visual Basic for Applications Could Allow Remote Code Execution (2707960)
The version of Visual Basic for Applications installed on the remote host is affected by an insecure library loading vulnerability. A remote attacker could exploit this flaw by tricking a user into opening a legitimate Microsoft Office file located in the same directory as a maliciously crafted...
CVE-2012-1854
Untrusted search path vulnerability in VBE6.dll in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Microsoft Visual Basic for Applications VBA; and Summit Microsoft Visual Basic for Applications SDK allows local users to gain privileges via a Trojan horse DLL in the current...
Design/Logic Flaw
Untrusted search path vulnerability in VBE6.dll in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Microsoft Visual Basic for Applications VBA; and Summit Microsoft Visual Basic for Applications SDK allows local users to gain privileges via a Trojan horse DLL in the current...
CVE-2012-1854
Untrusted search path vulnerability in VBE6.dll in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Microsoft Visual Basic for Applications VBA; and Summit Microsoft Visual Basic for Applications SDK allows local users to gain privileges via a Trojan horse DLL in the current...
CVE-2012-1854
Untrusted search path vulnerability in VBE6.dll in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Microsoft Visual Basic for Applications VBA; and Summit Microsoft Visual Basic for Applications SDK allows local users to gain privileges via a Trojan horse DLL in the current...
VulnCheck KEV: CVE-2012-1854
Microsoft Visual Basic for Applications VBA contains an insecure library loading vulnerability that could allow for remote code execution...
Microsoft Visual Basic for Applications Insecure Library Loading (MS12-046; CVE-2012-1854)
A remote code execution vulnerability has been reported in Microsoft Visual Basic for Applications VBA...
ZDI-12-081 : Oracle Java GlueGen Arbitrary Native Library Loading Remote Code Execution Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-081 : Oracle Java GlueGen Arbitrary Native Library Loading Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-081 June 6, 2012 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors: Oracle - --...