Lucene search
K

833 matches found

Saint
Saint
added 2011/03/28 12:0 a.m.31 views

Microsoft Office Groove Insecure Library Loading

Added: 03/28/2011 CVE: CVE-2010-3146 BID: 42695 OSVDB: 67484 Background Microsoft Office Groove is a collaboration-based software application that allows teams and organizations to work together regardless of physical or network location. Problem Microsoft Office Groove has a vulnerability due to...

9.3CVSS6.4AI score0.13715EPSS
Exploits5
Saint
Saint
added 2011/03/28 12:0 a.m.77 views

Microsoft Office Groove Insecure Library Loading

Added: 03/28/2011 CVE: CVE-2010-3146 BID: 42695 OSVDB: 67484 Background Microsoft Office Groove is a collaboration-based software application that allows teams and organizations to work together regardless of physical or network location. Problem Microsoft Office Groove has a vulnerability due to...

9.3CVSS6.4AI score0.13715EPSS
Exploits5
Saint
Saint
added 2011/03/14 12:0 a.m.35 views

Microsoft Remote Desktop Connection Insecure Library Injection

Added: 03/14/2011 CVE: CVE-2011-0029 BID: 46678 OSVDB: 71014 Background The Windows Remote Desktop allows desktop access to one Windows computer from another Windows computer. Problem A library loading vulnerability in the Remote Desktop Client allows arbitrary command execution when a user opens...

9.3CVSS7.7AI score0.0716EPSS
Exploits4
Prion
Prion
added 2011/03/09 11:0 p.m.19 views

Design/Logic Flaw

Untrusted search path vulnerability in DirectShow in Microsoft Windows Vista SP1 and SP2, Windows 7 Gold and SP1, Windows Server 2008 R2 and R2 SP1, and Windows Media Center TV Pack for Windows Vista allows local users to gain privileges via a Trojan horse DLL in the current working directory, as...

9.3CVSS6.8AI score0.10391EPSS
Exploits0References8Affected Software2
Prion
Prion
added 2011/03/09 11:0 p.m.16 views

Design/Logic Flaw

Untrusted search path vulnerability in the client in Microsoft Remote Desktop Connection 5.2, 6.0, 6.1, and 7.0 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .rdp file, aka "Remote Desktop Insecure...

9.3CVSS6.8AI score0.0716EPSS
Exploits4References7Affected Software3
Vulnrichment
Vulnrichment
added 2011/03/09 10:0 p.m.11 views

CVE-2011-0029

Untrusted search path vulnerability in the client in Microsoft Remote Desktop Connection 5.2, 6.0, 6.1, and 7.0 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .rdp file, aka "Remote Desktop Insecure...

6.6AI score0.0716EPSS
Exploits4References7
Cvelist
Cvelist
added 2011/03/09 10:0 p.m.26 views

CVE-2011-0032

Untrusted search path vulnerability in DirectShow in Microsoft Windows Vista SP1 and SP2, Windows 7 Gold and SP1, Windows Server 2008 R2 and R2 SP1, and Windows Media Center TV Pack for Windows Vista allows local users to gain privileges via a Trojan horse DLL in the current working directory, as...

6.3AI score0.10391EPSS
Exploits0References8
securityvulns
securityvulns
added 2011/03/09 12:0 a.m.32 views

Microsoft Windows multiple security vulnerabilities

Unsafe library loading, code execution with .dvr-ms files...

9.3CVSS2.9AI score0.33276EPSS
Exploits13Affected Software1
Check Point Advisories
Check Point Advisories
added 2011/03/08 12:0 a.m.4 views

Microsoft Internet Explorer 8 IESHIMS.DLL Insecure Library Loading (MS11-003; CVE-2011-0038)

Microsoft Internet Explorer IE is a web browser application that is capable of rendering both static and dynamic web content. A remote code execution vulnerability has been reported in the way that Microsoft Internet Explorer 8 handles the loading of DLL files. The vulnerability is due to the way...

9.3CVSS7AI score0.11153EPSS
Exploits0
Packet Storm
Packet Storm
added 2011/03/02 12:0 a.m.31 views

Mega Menager 3.4.0.9 DLL Hijacking

============ Advisory 02/03/2011 ============= / PoC Title: Mega Menager BOOL WINAPI DllMain HANDLE hinstDLL, DWORD fdwReason, LPVOID lpvReserved switch fdwReason case DLLPROCESSATTACH: exploit; case DLLTHREADATTACH: case DLLTHREADDETACH: case DLLPROCESSDETACH: break; return TRUE; int exploit...

7.4AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2011/02/22 12:0 a.m.5 views

Adobe Acrobat Reader PDF Embedded in HTML Library Loading (CVE-2011-0562)

Adobe Reader and Acrobat is a family of computer programs developed by Adobe Systems, designed to view, create, manipulate and manage files in Adobe's core technology, the Portable Document Format PDF, a format that has become the de facto standard in the electronic document exchange. A remote co...

6.9CVSS7.3AI score0.00673EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2011/02/16 3:2 p.m.4 views

rgmanager: insecure library loading vulnerability

The 1 SAPDatabase and 2 SAPInstance scripts in OCF Resource Agents aka resource-agents or cluster-agents 1.0.3 in Linux-HA place a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...

6.9CVSS5.8AI score0.00417EPSS
Exploits1References4
Prion
Prion
added 2011/02/10 4:0 p.m.20 views

Design/Logic Flaw

Untrusted search path vulnerability in Microsoft Internet Explorer 8 might allow local users to gain privileges via a Trojan horse IEShims.dll in the current working directory, as demonstrated by a Desktop directory that contains an HTML file, aka "Internet Explorer Insecure Library Loading...

9.3CVSS6.6AI score0.11153EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2011/02/10 3:0 p.m.63 views

CVE-2011-0038

The CVE-2011-0038 issue is an untrusted search path/ insecure DLL loading vulnerability in Microsoft Internet Explorer 8 (IE8) related to IESHIMS.DLL. Multiple connected advisories (MS11-003/MS11-003; CPAI-2011-053) describe remote code execution when a user is enticed to place a malicious DLL on...

9.3CVSS6.2AI score0.11153EPSS
Exploits0References9Affected Software1
Tenable Nessus
Tenable Nessus
added 2011/02/09 12:0 a.m.40 views

Flash Player < 10.2.152.26 Multiple Vulnerabilities (APSB11-02)

The remote Windows host contains a version of Adobe Flash Player earlier than 10.2.152.26. Such versions are potentially affected by multiple vulnerabilities : - An integer overflow exists that could lead to code execution. CVE-2011-0558 - Multiple memory corruption vulnerabilities exist that cou...

9.3CVSS5.9AI score0.0769EPSS
Exploits0References14
OpenVAS
OpenVAS
added 2011/02/09 12:0 a.m.37 views

Microsoft Internet Explorer Multiple Vulnerabilities (2482017)

This host is missing a critical security update according to Microsoft Bulletin MS11-003. OpenVAS Vulnerability Test $Id: secpodms11-003.nasl 6526 2017-07-05 05:43:52Z cfischer $ Microsoft Internet Explorer Multiple Vulnerabilities 2482017 Authors: Sooraj KS Copyright: Copyright c 2011 SecPod,...

9.3CVSS0.4AI score0.81663EPSS
Exploits9References3
Tenable Nessus
Tenable Nessus
added 2011/02/09 12:0 a.m.47 views

Adobe Reader < 10.0.1 / 9.4.2 / 8.2.6 Multiple Vulnerabilities (APSB11-03)

The version of Adobe Reader installed on the remote host is earlier than 10.0.1 / 9.4.2 / 8.2.6. Such versions are reportedly affected by multiple vulnerabilities : - Multiple input validation vulnerability exist that could lead to code execution. CVE-2010-4091, CVE-2011-0586, CVE-2011-0587,...

9.3CVSS6AI score0.4954EPSS
Exploits2References54
Tenable Nessus
Tenable Nessus
added 2011/02/09 12:0 a.m.31 views

Adobe Acrobat < 10.0.1 / 9.4.2 / 8.2.5 Multiple Vulnerabilities (APSB11-03)

The version of Adobe Acrobat installed on the remote host is earlier than 10.0.1 / 9.4.2 / 8.2.5. Such versions are reportedly affected by multiple vulnerabilities : - Multiple input validation vulnerability exist that could lead to code execution. CVE-2010-4091, CVE-2011-0586, CVE-2011-0587,...

9.3CVSS6AI score0.4954EPSS
Exploits2References54
Check Point Advisories
Check Point Advisories
added 2011/01/11 12:0 a.m.13 views

Microsoft Windows Backup Manager Insecure Library Loading (MS11-001; CVE-2010-3145)

The Windows Backup Manager sdclt.exe allows users to restore a computer's system files to an earlier point in time. A remote attacker could convince a user to open a legitimate Windows Backup Catalog file .wbcat that is located in the same network directory as a specially crafted DLL file. Then,...

9.3CVSS6.6AI score0.10944EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2010/12/29 12:0 a.m.3 views

Adobe Photoshop CS5 Insecure Library Loading Code Execution (APSB10-30; CVE-2010-3127)

Adobe Photoshop CS5 is a graphics editing program that features a 3D engine. A library-loading vulnerability has been identified in Adobe Photoshop CS5. This vulnerability is due to the application insecurely loading certain librairies from the current working directory, which could allow attacke...

9.3CVSS7.1AI score0.13851EPSS
Exploits0
Rows per page
Query Builder