Lucene search
+L

151 matches found

Saint
Saint
added 2008/12/24 12:0 a.m.58 views

Norton AntiSpam 2004 SymSpamHelper ActiveX control buffer overflow

Added: 12/24/2008 CVE: CVE-2004-0363 BID: 9916 OSVDB: 6249 Background Norton AntiSpam 2004, which is included in Norton Internet Security 2004, is spam filtering software. Problem A buffer overflow vulnerability in the SymSpamHelper ActiveX control symspam.dll allows command execution when a user...

7.5CVSS6.9AI score0.66567EPSS
Exploits7
Check Point Advisories
Check Point Advisories
added 2008/11/12 12:0 a.m.38 views

Autodesk LiveUpdate ActiveX Control Code Execution (CVE-2008-4471; CVE-2008-4472)

Autodesk provides several software products for professional designing of buildings and other infrastructure. A code execution vulnerability has been reported in Autodesk LiveUpdate ActiveX control within multiple products. The vulnerability is due to an error in the Autodesk LiveUpdate ActiveX...

9.3CVSS7.3AI score0.07836EPSS
Exploits5
NVD
NVD
added 2008/10/07 8:0 p.m.19 views

CVE-2008-4472

The UpdateEngine class in the LiveUpdate ActiveX control LiveUpdate16.DLL 17.2.56, as used in Revit Architecture 2009 SP2 and Autodesk Design Review 2009, allows remote attackers to execute arbitrary programs via the second argument to the ApplyPatch method...

9.3CVSS7.3AI score0.07836EPSS
Exploits4References9
Prion
Prion
added 2008/10/07 8:0 p.m.22 views

Security feature bypass

The UpdateEngine class in the LiveUpdate ActiveX control LiveUpdate16.DLL 17.2.56, as used in Revit Architecture 2009 SP2 and Autodesk Design Review 2009, allows remote attackers to execute arbitrary programs via the second argument to the ApplyPatch method...

9.3CVSS7.5AI score0.07836EPSS
Exploits4References9Affected Software2
CVE
CVE
added 2008/10/07 6:27 p.m.69 views

CVE-2008-4472

The CVE-2008-4472 issue is in the LiveUpdate ActiveX control (LiveUpdate16.DLL 17.2.56) used by Autodesk products (e.g., Revit Architecture 2009 SP2, Autodesk Design Review 2009). The ApplyPatch method accepts a second argument and can cause arbitrary code execution on a remote Windows host when ...

9.3CVSS7.2AI score0.07836EPSS
Exploits4References9Affected Software3
Cvelist
Cvelist
added 2008/10/07 6:27 p.m.29 views

CVE-2008-4472

The UpdateEngine class in the LiveUpdate ActiveX control LiveUpdate16.DLL 17.2.56, as used in Revit Architecture 2009 SP2 and Autodesk Design Review 2009, allows remote attackers to execute arbitrary programs via the second argument to the ApplyPatch method...

7.2AI score0.07836EPSS
Exploits4References9
Saint
Saint
added 2008/10/06 12:0 a.m.44 views

Autodesk LiveUpdate ActiveX control ApplyPatch method vulnerability

Added: 10/06/2008 CVE: CVE-2008-4472 BID: 31490 OSVDB: 49047 Background Autodesk is a suite of architectural design software products. Problem The ApplyPatch method in the LiveUpdate ActiveX control allows a web page to execute arbitrary files on the system. Remote command execution is possible b...

9.3CVSS7.3AI score0.07836EPSS
Exploits4
Saint
Saint
added 2008/10/06 12:0 a.m.25 views

Autodesk LiveUpdate ActiveX control ApplyPatch method vulnerability

Added: 10/06/2008 CVE: CVE-2008-4472 BID: 31490 OSVDB: 49047 Background Autodesk is a suite of architectural design software products. Problem The ApplyPatch method in the LiveUpdate ActiveX control allows a web page to execute arbitrary files on the system. Remote command execution is possible b...

9.3CVSS7.2AI score0.07836EPSS
Exploits4
securityvulns
securityvulns
added 2008/10/02 12:0 a.m.66 views

Autodesk DWF Viewer Control / LiveUpdate Module remote code execution exploit

!-- Autodesk DWF Viewer Control / LiveUpdate Module remote code execution exploit by Nine:Situations:Group::bruiser site: http://retrogod.altervista.org/ tested against IE6 tested software: Revit Architecture 2009 sp2 Autodesk Design Review 2009 which also comes with Revit dll settings both: RegK...

0.8AI score
Exploits0
Packet Storm
Packet Storm
added 2008/10/01 12:0 a.m.19 views

autodesk-exec.txt

!-- Autodesk DWF Viewer Control / LiveUpdate Module remote code execution exploit by Nine:Situations:Group::bruiser site: http://retrogod.altervista.org/ tested against IE6 tested software: Revit Architecture 2009 sp2 Autodesk Design Review 2009 which also comes with Revit dll settings both: RegK...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/09/30 12:0 a.m.17 views

Autodesk DWF Viewer Control LiveUpdate Module - Remote Code Execution

Autodesk DWF Viewer Control LiveUpdate Module - Remote Code Execution !-- Autodesk DWF Viewer Control / LiveUpdate Module remote code execution exploit by Nine:Situations:Group::bruiser site: http://retrogod.altervista.org/ tested against IE6 tested software: Revit Architecture 2009 sp2 Autodesk...

1.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/09/30 12:0 a.m.58 views

Autodesk DWF Viewer Control / LiveUpdate Module - Remote Code Execution

!-- Autodesk DWF Viewer Control / LiveUpdate Module remote code execution exploit by Nine:Situations:Group::bruiser site: http://retrogod.altervista.org/ tested against IE6 tested software: Revit Architecture 2009 sp2 Autodesk Design Review 2009 which also comes with Revit dll settings both: RegK...

7.4AI score
Exploits0
Saint
Saint
added 2007/09/20 12:0 a.m.32 views

Symantec Norton NavComUI ActiveX control vulnerability

Added: 09/20/2007 CVE: CVE-2007-2955 BID: 24983 OSVDB: 36477 Background The Symantec Norton product suite includes antivirus, firewall, and other security functions. Problem Vulnerabilities in the AxSysListView32 and AxSysListView32OAA ActiveX controls, implemented by the NavComUI.dll library...

6.8CVSS6.7AI score0.04032EPSS
Exploits4
Saint
Saint
added 2007/09/20 12:0 a.m.37 views

Symantec Norton NavComUI ActiveX control vulnerability

Added: 09/20/2007 CVE: CVE-2007-2955 BID: 24983 OSVDB: 36477 Background The Symantec Norton product suite includes antivirus, firewall, and other security functions. Problem Vulnerabilities in the AxSysListView32 and AxSysListView32OAA ActiveX controls, implemented by the NavComUI.dll library...

6.8CVSS6.7AI score0.04032EPSS
Exploits4
Saint
Saint
added 2007/09/20 12:0 a.m.34 views

Symantec Norton NavComUI ActiveX control vulnerability

Added: 09/20/2007 CVE: CVE-2007-2955 BID: 24983 OSVDB: 36477 Background The Symantec Norton product suite includes antivirus, firewall, and other security functions. Problem Vulnerabilities in the AxSysListView32 and AxSysListView32OAA ActiveX controls, implemented by the NavComUI.dll library...

6.8CVSS6.7AI score0.04032EPSS
Exploits4
Saint
Saint
added 2007/09/20 12:0 a.m.39 views

Symantec Norton NavComUI ActiveX control vulnerability

Added: 09/20/2007 CVE: CVE-2007-2955 BID: 24983 OSVDB: 36477 Background The Symantec Norton product suite includes antivirus, firewall, and other security functions. Problem Vulnerabilities in the AxSysListView32 and AxSysListView32OAA ActiveX controls, implemented by the NavComUI.dll library...

6.8CVSS6.8AI score0.04032EPSS
Exploits4
Symantec
Symantec
added 2007/09/05 8:0 a.m.33 views

Symantec SYMTDI.SYS Device Driver Local Denial of Service

SUMMARY Some versions of Symantecs device driver SYMTDI.SYS contain a vulnerability which, if successfully exploited, could allow a local attacker to cause the system to crash. Risk Impact Low Remote Access | No ---|--- Local Access | Yes Authentication Required | Yes, to the local system Exploit...

1.9CVSS1.6AI score0.00864EPSS
Exploits0Affected Software1
Symantec
Symantec
added 2007/07/11 8:0 a.m.25 views

Symantec SYMTDI.SYS Device Driver Local Elevation of Privilege

SUMMARY Some versions of Symantecs device driver SYMTDI.SYS contain a vulnerability which, if successfully exploited, could allow a local attacker to execute arbitrary code with system level privileges. Risk Impact Medium Remote Access | No ---|--- Local Access | Yes Authentication Required | Yes...

6.9CVSS0.5AI score0.01059EPSS
Exploits1Affected Software1
Saint
Saint
added 2007/03/15 12:0 a.m.43 views

SupportSoft tgctlsi.dll ActiveX control buffer overflow

Added: 03/15/2007 CVE: CVE-2006-6490 BID: 22564 OSVDB: 33481 Background SupportSoft ActiveX controls are used by third-party products to provide remote technical support. Problem SupportSoft ActiveX controls are affected by multiple buffer overflow vulnerabilities which can lead to command...

10CVSS7.2AI score0.1034EPSS
Exploits4
Saint
Saint
added 2007/03/15 12:0 a.m.38 views

SupportSoft tgctlsi.dll ActiveX control buffer overflow

Added: 03/15/2007 CVE: CVE-2006-6490 BID: 22564 OSVDB: 33481 Background SupportSoft ActiveX controls are used by third-party products to provide remote technical support. Problem SupportSoft ActiveX controls are affected by multiple buffer overflow vulnerabilities which can lead to command...

10CVSS7.2AI score0.1034EPSS
Exploits4
Rows per page
Query Builder